CVE-2022-29804

SOURCE - nist

Summary

Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.

EPSS Score⁠: 0.00162 (0.525)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-22⁠

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Sources (11)

My images

nist

CREATED

2 years ago

UPDATED

1 year ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-22⁠

CVSS SCORE

7.5high

alpine

CREATED

2 years ago

UPDATED

7 months ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

debian

CREATED

2 years ago

UPDATED

8 months ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

ubuntu

CREATED

2 years ago

UPDATED

26 days ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5medium

golang

CREATED

2 years ago

UPDATED

5 months ago

SOURCE IDGO-2022-0533⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

bitnami

CREATED

8 months ago

UPDATED

8 months ago

SOURCE ID

BIT-2022-29804

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

bitnami

CREATED

2 months ago

UPDATED

2 months ago

SOURCE ID

BIT-golang-2022-29804

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

suse

CREATED

2 years ago

UPDATED

8 months ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

4.8medium

oracle

CREATED

2 years ago

UPDATED

2 years ago

SOURCE IDELSA-2022-17956⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

oracle

CREATED

2 years ago

UPDATED

2 years ago

SOURCE IDELSA-2022-17957⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

inthewild

CREATED

10 months ago

UPDATED

10 months ago

SOURCE IDCVE-2022-29804⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE