ks-devops icon indicating copy to clipboard operation
ks-devops copied to clipboard

Published 20 hours ago verified publisher icon kubesphere

Critical security issue due to the go dep

Open LinuxSuRen opened this issue 3 years ago • 0 comments 

+--------------------------------+------------------+----------+---------------------+---------------+--------------------------------------+
|            LIBRARY             | VULNERABILITY ID | SEVERITY |  INSTALLED VERSION  | FIXED VERSION |                TITLE                 |
+--------------------------------+------------------+----------+---------------------+---------------+--------------------------------------+
| github.com/emicklei/go-restful | CVE-2022-1996    | CRITICAL | v2.9.6+incompatible | v3.8.0        | go-restful: Authorization Bypass     |
|                                |                  |          |                     |               | Through User-Controlled Key          |
|                                |                  |          |                     |               | -->avd.aquasec.com/nvd/cve-2022-1996 |
+--------------------------------+------------------+----------+---------------------+---------------+--------------------------------------+

LinuxSuRen avatar Jul 11 '22 09:07 LinuxSuRen