Golang Go vulnerabilities
142 known vulnerabilities affecting golang/go.
Total CVEs
142
CISA KEV
2
actively exploited
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL17HIGH84MEDIUM39LOW2
Vulnerabilities
Page 8 of 8
CVE-2015-8618HIGHCVSS 7.5v1.5v1.5.1+1 more2016-01-27
CVE-2015-8618 [HIGH] CWE-200 CVE-2015-8618: The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propag
The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.
nvd
CVE-2014-7189MEDIUMCVSS 4.3v1.1v1.1.1+6 more2014-10-07
CVE-2014-7189 [MEDIUM] CWE-264 CVE-2014-7189: crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle
crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.
nvd
← Previous8 / 8