GO-2024-3100
See a problem?- Source
- https://pkg.go.dev/vuln/GO-2024-3100
- Import Source
- https://vuln.go.dev/ID/GO-2024-3100.json
- JSON Data
- https://api.osv.dev/v1/vulns/GO-2024-3100
- Aliases
-
- CVE-2024-43798
- GHSA-38jh-8h67-m7mj
- Published
- 2024-08-30T17:18:07Z
- Modified
- 2024-08-30T17:42:36.136463Z
- Summary
- Chisel's AUTH environment variable not respected in server entrypoint in github.com/jpillora/chisel
- Details
-
Chisel's AUTH environment variable not respected in server entrypoint in github.com/jpillora/chisel
- References
-
- https://github.com/jpillora/chisel/security/advisories/GHSA-38jh-8h67-m7mj
- https://nvd.nist.gov/vuln/detail/CVE-2024-43798
- https://github.com/jpillora/chisel/blob/3de177432cd23db58e57f376b62ad497cc10840f/main.go#L138
- https://github.com/jpillora/chisel/blob/3de177432cd23db58e57f376b62ad497cc10840f/main.go#L452
Affected packages
Go / github.com/jpillora/chisel
Package
- Name
- github.com/jpillora/chisel
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/jpillora/chisel