search

cxnleach / Vuln_GO_App

MIT License
0 stars 0 forks source link

CX: CVE-2021-33194 in Go-golang.org/x/net-v0.0.0-20201021035429 and f5854403a974 @ Vuln_GO_App.master #46

Open github-actions[bot] opened 1 month ago

github-actions[bot] commented 1 month ago

Description

golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input.

HIGH Vulnerable Package issue exists @ golang.org/x/net in branch master

Vulnerability ID: CVE-2021-33194

Package Name: golang.org/x/net

Severity: HIGH

CVSS Score: 7.5

Publish Date: 2021-05-26T15:15:00

Current Package Version: f5854403a974

Remediation Upgrade Recommendation: v0.1.1-0.20221020150923-da05058a0390

Link To SCA

Reference – NVD link

github-actions[bot] commented 1 month ago

Issue still exists.