| Max CVSS | 5.1 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-28367 | 5.1 |
Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via malicious gcc flags specified via a #cgo directive.
|
20-04-2023 - 00:15 | 18-11-2020 - 17:15 | |
| CVE-2020-28366 | 5.1 |
Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file.
|
28-02-2023 - 14:52 | 18-11-2020 - 17:15 | |
| CVE-2020-28362 | 5.0 |
Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.
|
30-11-2021 - 22:07 | 18-11-2020 - 17:15 | |
| CVE-2020-24553 | 4.3 |
Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header.
|
16-09-2021 - 13:19 | 02-09-2020 - 17:15 | |
| CVE-2020-24553 | 4.3 |
Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header.
|
25-09-2020 - 20:15 | 02-09-2020 - 17:15 |