Search Results (Refine Search)
- CPE Product Version: cpe:/a:golang:go:1.10:beta2
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2018-6574 |
Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked. Published: February 07, 2018; 4:29:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 4.6 MEDIUM |