all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2022-39213 (go-cvss)

Add to bookmarks

Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-39213

Sept. 15, 2022, 10:15 p.m. |

National Vulnerability Database nist.gov

go-cvss is a Go module to manipulate Common Vulnerability Scoring System (CVSS). In affected versions when a full CVSS v2.0 vector string is parsed using `ParseVector`, an Out-of-Bounds Read is possible due to a lack of tests. The Go module will then panic. The problem is patched in tag `v0.4.0`, by the commit `d9d478ff0c13b8b09ace030db9262f3c2fe031f4`. Users are advised to upgrade. Users unable to upgrade may avoid this issue by parsing only CVSS v2.0 vector strings that do not have all attributes …

cve cvss

Visit resource

More from nist.gov / National Vulnerability Database

CVE-2022-42418 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42421 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42416 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42417 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42419 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42420 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42414 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42415 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf
CVE-2022-42423 (pdf-xchange_editor) 5 days ago | nist.gov
cve pdf

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA
View on infosec-jobs.com

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States
View on infosec-jobs.com

IT Security Engineer

@ Stylitics | New York City
View on infosec-jobs.com

Information Security Engineer

@ VDA Labs | Remote
View on infosec-jobs.com

Information Security Analyst

@ Metropolitan Transportation Commission | San Francisco, CA
View on infosec-jobs.com

Manager, DT GRC (Governance, Risk, And compliance)

@ ServiceNow | Austin, Texas, United States
View on infosec-jobs.com

Associate Threat Intelligence Response Analyst

@ Recorded Future, Inc. | London, UK
View on infosec-jobs.com

Security Engineer - Product Security

@ Riot Games, Inc. | Los Angeles, USA
View on infosec-jobs.com

Senior DevSecOps Engineer - HYBRID

@ Sigma Defense | San Diego, California, United States
View on infosec-jobs.com

Senior Cloud Security Engineer (f/m/d)

@ ecosio | Vienna, Austria
View on infosec-jobs.com

Information Systems Security Manger (ISSM)

@ Scientific Systems Company, Inc. | Woburn, Massachusetts, United States
View on infosec-jobs.com

Cyber Assurance Manager

@ Tesco Bengaluru | Bengaluru, India
View on infosec-jobs.com