Go
by Golang
Source repositories
CVEs (83)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-9634 | 0.00 | — | 0.03 | Mar 8, 2019 | Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection. | |||
| CVE-2019-6486 | 0.00 | — | 0.04 | Jan 24, 2019 | Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks. | |||
| CVE-2014-7189 | 0.00 | — | 0.01 | Oct 7, 2014 | crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors. |
- CVE-2019-9634Mar 8, 2019risk 0.00cvss —epss 0.03
Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection.
- CVE-2019-6486Jan 24, 2019risk 0.00cvss —epss 0.04
Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.
- CVE-2014-7189Oct 7, 2014risk 0.00cvss —epss 0.01
crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.
Page 5 of 5