Filtered by vendor Go
Subscribe
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47911 | 1 Go | 1 Html | 2026-02-18 | N/A | 5.3 MEDIUM |
| The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content. | |||||
| CVE-2025-58190 | 1 Go | 1 Html | 2026-02-18 | N/A | 5.3 MEDIUM |
| The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content. | |||||
| CVE-2025-47913 | 1 Go | 1 Ssh | 2026-01-09 | N/A | 7.5 HIGH |
| SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process. | |||||
| CVE-2025-68120 | 1 Go | 1 Go | 2026-01-06 | N/A | 5.4 MEDIUM |
| To prevent unexpected untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode. | |||||
| CVE-2025-22869 | 1 Go | 1 Ssh | 2025-05-01 | N/A | 7.5 HIGH |
| SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted. | |||||
| CVE-2025-22868 | 1 Go | 1 Jws | 2025-05-01 | N/A | 7.5 HIGH |
| An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing. | |||||