github-actions[bot]
commented
1 month ago Issue still exists.
Open github-actions[bot] opened 1 month ago
github-actions[bot]
commented
1 month ago Issue still exists.
Description
An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the "skippy peanut butter" issue.
HIGH Vulnerable Package issue exists @ github.com/gogo/protobuf in branch master
Vulnerability ID: CVE-2021-3121
Package Name: github.com/gogo/protobuf
Severity: HIGH
CVSS Score: 8.6
Publish Date: 2021-01-11T06:15:00
Current Package Version: v1.2.1
Remediation Upgrade Recommendation: v1.2.1-0.20181230062611-854bdb323deb
Link To SCA
Reference – NVD link