VYPR
Unrated severityNVD Advisory· Published Jan 26, 2021· Updated Aug 3, 2024

CVE-2021-3115

CVE-2021-3115

Description

Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for example, cgo can execute a gcc program from an untrusted download).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.