exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 21

GHSA-wprm-fgrx-xj42

3 месяца назад

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line, i.e. via "go get", are not affected.

CVSS3: 8.6

EPSS: Низкий

CVE-2025-4674

3 месяца назад

CVSS3: 8.6

EPSS: Низкий

CVE-2025-4674

3 месяца назад

CVSS3: 8.6

EPSS: Низкий

CVE-2025-4674

3 месяца назад

CVSS3: 8.6

EPSS: Низкий

CVE-2025-4674

2 месяца назад

Unexpected command execution in untrusted VCS repositories in cmd/go

CVSS3: 8.6

EPSS: Низкий

CVE-2025-4674

3 месяца назад

The go command may execute unexpected commands when operating in untru ...

CVSS3: 8.6

EPSS: Низкий

SUSE-SU-2025:02296-1

4 месяца назад

Security update for go1.23

EPSS: Низкий

SUSE-SU-2025:02295-1

4 месяца назад

Security update for go1.24

EPSS: Низкий

ROS-20250808-06

3 месяца назад

Уязвимость golang

CVSS3: 8.6

EPSS: Низкий

RLSA-2025:13941

около 1 месяца назад

Important: golang security update

EPSS: Низкий

ELSA-2025-13941

3 месяца назад

ELSA-2025-13941: golang security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-13940

3 месяца назад

ELSA-2025-13940: go-toolset:rhel8 security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-13935

3 месяца назад

ELSA-2025-13935: golang security update (IMPORTANT)

EPSS: Низкий

BDU:2025-09875

3 месяца назад

Уязвимость языка программирования Golang, связанная с некорректным внешним управлением именем или путем файла, позволяющая нарушителю выполнить произвольный код

CVSS3: 8.6

EPSS: Низкий

SUSE-SU-2025:03161-1

около 2 месяцев назад

Security update for go1.25-openssl

EPSS: Низкий

SUSE-SU-2025:03115-1

2 месяца назад

Security update for go1.25-openssl

EPSS: Низкий

SUSE-SU-2025:02924-1

3 месяца назад

Security update for go1.25

EPSS: Низкий

SUSE-SU-2025:02837-1

3 месяца назад

Security update for go1.24-openssl

EPSS: Низкий

SUSE-SU-2025:02812-1

3 месяца назад

Security update for go1.23-openssl

EPSS: Низкий

SUSE-SU-2025:03158-1

2 месяца назад

Security update for go1.24-openssl

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-wprm-fgrx-xj42 The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line, i.e. via "go get", are not affected.	CVSS3: 8.6	0% Низкий	3 месяца назад
CVE-2025-4674 The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line, i.e. via "go get", are not affected.	CVSS3: 8.6	0% Низкий	3 месяца назад
CVE-2025-4674 The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line, i.e. via "go get", are not affected.	CVSS3: 8.6	0% Низкий	3 месяца назад
CVE-2025-4674 The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line, i.e. via "go get", are not affected.	CVSS3: 8.6	0% Низкий	3 месяца назад
CVE-2025-4674 Unexpected command execution in untrusted VCS repositories in cmd/go	CVSS3: 8.6	0% Низкий	2 месяца назад
CVE-2025-4674 The go command may execute unexpected commands when operating in untru ...	CVSS3: 8.6	0% Низкий	3 месяца назад
SUSE-SU-2025:02296-1 Security update for go1.23		0% Низкий	4 месяца назад
SUSE-SU-2025:02295-1 Security update for go1.24		0% Низкий	4 месяца назад
ROS-20250808-06 Уязвимость golang	CVSS3: 8.6	0% Низкий	3 месяца назад
RLSA-2025:13941 Important: golang security update		0% Низкий	около 1 месяца назад
ELSA-2025-13941 ELSA-2025-13941: golang security update (IMPORTANT)			3 месяца назад
ELSA-2025-13940 ELSA-2025-13940: go-toolset:rhel8 security update (IMPORTANT)			3 месяца назад
ELSA-2025-13935 ELSA-2025-13935: golang security update (IMPORTANT)			3 месяца назад
BDU:2025-09875 Уязвимость языка программирования Golang, связанная с некорректным внешним управлением именем или путем файла, позволяющая нарушителю выполнить произвольный код	CVSS3: 8.6	0% Низкий	3 месяца назад
SUSE-SU-2025:03161-1 Security update for go1.25-openssl			около 2 месяцев назад
SUSE-SU-2025:03115-1 Security update for go1.25-openssl			2 месяца назад
SUSE-SU-2025:02924-1 Security update for go1.25			3 месяца назад
SUSE-SU-2025:02837-1 Security update for go1.24-openssl			3 месяца назад
SUSE-SU-2025:02812-1 Security update for go1.23-openssl			3 месяца назад
SUSE-SU-2025:03158-1 Security update for go1.24-openssl			2 месяца назад

Уязвимостей на страницу