Package impact
Go / toolchain
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-15041 | critical | 9.8 | 9.8 | 9y ago | Remote command execution via "go get" in cmd/go | |||
| CVE-2023-29402 | critical | — | 9.5 | 3y ago | RHSA-2023:3922: go-toolset:rhel8 security update (Critical) | |||
| CVE-2023-29404 | critical | — | 9.5 | 3y ago | RHSA-2023:3922: go-toolset:rhel8 security update (Critical) | |||
| CVE-2023-29405 | critical | — | 9.5 | 3y ago | RHSA-2023:3922: go-toolset:rhel8 security update (Critical) | |||
| CVE-2025-68119 | unknown | — | — | 4mo ago | Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial (hg) installed, downloading modules from non-standard sources (e.g., custom d… |