Go modules package
github.com/pandatix/go-cvss
pkg:golang/github.com/pandatix/go-cvss
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-39213 | — | >= 0.2.0, < 0.4.0 | 0.4.0 | Sep 15, 2022 | go-cvss is a Go module to manipulate Common Vulnerability Scoring System (CVSS). In affected versions when a full CVSS v2.0 vector string is parsed using `ParseVector`, an Out-of-Bounds Read is possible due to a lack of tests. The Go module will then panic. The problem is patched |
- CVE-2022-39213Sep 15, 2022affected >= 0.2.0, < 0.4.0fixed 0.4.0
go-cvss is a Go module to manipulate Common Vulnerability Scoring System (CVSS). In affected versions when a full CVSS v2.0 vector string is parsed using `ParseVector`, an Out-of-Bounds Read is possible due to a lack of tests. The Go module will then panic. The problem is patched