exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-47534

больше 1 года назад

go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations. For example, if targets delegate to "A", and to "B", and "B" delegates to "C", then the client should trace the delegations in the order "A" then "B" then "C" but it may incorrectly trace the delegations "B"->"C"->"A". This vulnerability is fixed in 2.0.1.

EPSS: Низкий

CVE-2024-47534

больше 1 года назад

go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations. For example, if targets delegate to "A", and to "B", and "B" delegates to "C", then the client should trace the delegations in the order "A" then "B" then "C" but it may incorrectly trace the delegations "B"->"C"->"A". This vulnerability is fixed in 2.0.1.

EPSS: Низкий

CVE-2024-47534

больше 1 года назад

go-tuf is a Go implementation of The Update Framework (TUF). The go-tu ...

EPSS: Низкий

GHSA-4f8r-qqr9-fq8j

больше 1 года назад

Incorrect delegation lookups can make go-tuf download the wrong artifact

CVSS3: 7.5

EPSS: Низкий

SUSE-SU-2024:3911-1

больше 1 года назад

Security update for govulncheck-vulndb

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-47534 go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations. For example, if targets delegate to "A", and to "B", and "B" delegates to "C", then the client should trace the delegations in the order "A" then "B" then "C" but it may incorrectly trace the delegations "B"->"C"->"A". This vulnerability is fixed in 2.0.1.		0% Низкий	больше 1 года назад
CVE-2024-47534 go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations. For example, if targets delegate to "A", and to "B", and "B" delegates to "C", then the client should trace the delegations in the order "A" then "B" then "C" but it may incorrectly trace the delegations "B"->"C"->"A". This vulnerability is fixed in 2.0.1.		0% Низкий	больше 1 года назад
CVE-2024-47534 go-tuf is a Go implementation of The Update Framework (TUF). The go-tu ...		0% Низкий	больше 1 года назад
GHSA-4f8r-qqr9-fq8j Incorrect delegation lookups can make go-tuf download the wrong artifact	CVSS3: 7.5	0% Низкий	больше 1 года назад
SUSE-SU-2024:3911-1 Security update for govulncheck-vulndb			больше 1 года назад

Уязвимостей на страницу