GHSA-r48q-9g5r-8q2h

Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-r48q-9g5r-8q2h/GHSA-r48q-9g5r-8q2h.json

Aliases

CVE-2022-1996

Published

2022-06-09T00:00:23Z

Modified

2022-06-17T18:18:04Z

Details

Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.

References

Affected packages

Go / github.com/emicklei/go-restful/v3

github.com/emicklei/go-restful/v3

Affected ranges

Type: SEMVER
Events: Introduced

0

Fixed

3.8.0

Affected versions

Go / github.com/emicklei/go-restful/v2

github.com/emicklei/go-restful/v2

Affected ranges

Type: SEMVER
Events: Introduced

0

Fixed

3.8.0

Affected versions

Database specific

{
    "last_known_affected_version_range": "<= 2.7.1"
}

Go / github.com/emicklei/go-restful

github.com/emicklei/go-restful

Affected ranges

Type: SEMVER
Events: Introduced

0

Fixed

3.8.0

Affected versions

Database specific

{
    "last_known_affected_version_range": "<= 1.1.13"
}