Vulnerabilidades en Go standard library
111 resultadosCVE-2025-61723HIGHQuadratic complexity when parsing some invalid inputs in encoding/pemEPSS 0.6%CVE-2025-61725HIGHExcessive CPU consumption in ParseAddress in net/mailEPSS 0.6%CVE-2026-39836HIGHPanic in Dial and LookupPort when handling NUL byte on Windows in netEPSS 0.6%CVE-2026-33811HIGHCrash when handling long CNAME response in netEPSS 0.6%CVE-2025-22865HIGHParsePKCS1PrivateKey panic with partial keys in crypto/x509EPSS 0.6%CVE-2022-30580HIGHEmpty Cmd.Path can trigger unintended binary in os/exec on WindowsEPSS 0.6%CVE-2026-42499HIGHQuadratic string concatenation in consumePhrase in net/mailEPSS 0.6%CVE-2026-33814HIGHInfinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/netEPSS 0.6%CVE-2026-27145MEDIUMInefficient candidate hostname parsing in crypto/x509EPSS 0.6%CVE-2025-4673MEDIUMSensitive headers not cleared on cross-origin redirect in net/httpEPSS 0.6%CVE-2026-42504HIGHQuadratic complexity in WordDecoder.DecodeHeader in mimeEPSS 0.6%CVE-2025-58186MEDIUMLack of limit when parsing cookies can cause memory exhaustion in net/httpEPSS 0.5%CVE-2025-61724MEDIUMExcessive CPU consumption in Reader.ReadResponse in net/textprotoEPSS 0.5%CVE-2025-58185MEDIUMParsing DER payload can cause memory exhaustion in encoding/asn1EPSS 0.5%CVE-2026-25679HIGHIncorrect parsing of IPv6 host literals in net/urlEPSS 0.5%CVE-2025-47906MEDIUMUnexpected paths returned from LookPath in os/execEPSS 0.5%CVE-2026-39820HIGHQuadratic string concatentation in consumeComment in net/mailEPSS 0.5%CVE-2024-45341MEDIUMUsage of IPv6 zone IDs can bypass URI name constraints in crypto/x509EPSS 0.5%CVE-2025-61729HIGHExcessive resource consumption when printing error string for host certificate validation in crypto/x509EPSS 0.5%CVE-2026-32283HIGHUnauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tlsEPSS 0.4%