GoHTTP
by GoHTTP
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-12160 | Cri | 0.64 | 9.8 | 0.02 | May 17, 2019 | GoHTTP through 2017-07-25 has a sendHeader use-after-free. | ||
| CVE-2019-12158 | Cri | 0.64 | 9.8 | 0.02 | May 17, 2019 | GoHTTP through 2017-07-25 has a GetExtension heap-based buffer overflow via a long extension. | ||
| CVE-2019-12159 | Hig | 0.49 | 7.5 | 0.01 | May 17, 2019 | GoHTTP through 2017-07-25 has a stack-based buffer over-read in the scan function (when called from getRequestType) via a long URL. |
- risk 0.64cvss 9.8epss 0.02
GoHTTP through 2017-07-25 has a sendHeader use-after-free.
- risk 0.64cvss 9.8epss 0.02
GoHTTP through 2017-07-25 has a GetExtension heap-based buffer overflow via a long extension.
- risk 0.49cvss 7.5epss 0.01
GoHTTP through 2017-07-25 has a stack-based buffer over-read in the scan function (when called from getRequestType) via a long URL.