Vulnerabilidades em Go standard library
111 resultadosCVE-2025-58189MEDIUMALPN negotiation error contains attacker controlled information in crypto/tlsEPSS 0.4%CVE-2025-47912MEDIUMInsufficient validation of bracketed IPv6 hostnames in net/urlEPSS 0.4%CVE-2024-24789MEDIUMMishandling of corrupt central directory record in archive/zipEPSS 0.4%CVE-2023-29403HIGHUnsafe behavior in setuid/setgid binaries in runtimeEPSS 0.4%CVE-2025-58183MEDIUMUnbounded allocation when parsing GNU sparse map in archive/tarEPSS 0.4%CVE-2026-39825MEDIUMReverseProxy forwards queries with more than urlmaxqueryparams parameters in net/http/httputilEPSS 0.4%CVE-2025-22870MEDIUMHTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/netEPSS 0.4%CVE-2025-58187HIGHQuadratic complexity when checking name constraints in crypto/x509EPSS 0.4%CVE-2026-32280HIGHUnexpected work during chain building in crypto/x509EPSS 0.4%CVE-2026-39826MEDIUMEscaper bypass leads to XSS in html/templateEPSS 0.4%CVE-2026-42507MEDIUMArbitrary inputs are included in errors without any escaping in net/textprotoEPSS 0.4%CVE-2025-58188HIGHPanic when validating certificates with DSA public keys in crypto/x509EPSS 0.4%CVE-2026-27137HIGHIncorrect enforcement of email constraints in crypto/x509EPSS 0.4%CVE-2026-27138MEDIUMPanic in name constraint checking for malformed certificates in crypto/x509EPSS 0.4%CVE-2026-32281HIGHInefficient policy validation in crypto/x509EPSS 0.3%CVE-2025-47907HIGHIncorrect results returned from Rows.Scan in database/sqlEPSS 0.3%CVE-2026-27142MEDIUMURLs in meta content attribute actions are not escaped in html/templateEPSS 0.3%CVE-2026-39823MEDIUMBypass of meta content URL escaping causes XSS in html/templateEPSS 0.3%CVE-2025-22874HIGHUsage of ExtKeyUsageAny disables policy validation in crypto/x509EPSS 0.3%CVE-2025-47910MEDIUMCrossOriginProtection insecure bypass patterns not limited to exact matches in net/httpEPSS 0.3%