7.5
CVSSv2

CVE-2017-15041

Published: 05/10/2017 Updated: 03/10/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Go prior to 1.8.4 and 1.9.x prior to 1.9.1 allows "go get" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, "go get" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository's Git checkout has malicious commands in .git/hooks/, they will execute on the system running "go get."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

golang go

golang go 1.9

Vendor Advisories

Synopsis Moderate: go-toolset-7 and go-toolset-7-golang security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for go-toolset-7 and go-toolset-7-golang is now available for Red Hat Developer ToolsRed Hat Product Security has rated this update as having a security impact of Mo ...
Synopsis Moderate: golang security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for golang is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Syst ...
Arbitrary code execution during go get or go get -d:Go before 184 and 19x before 191 allows "go get" remote command execution Using custom domains, it is possible to arrange things so that examplecom/pkg1 points to a Subversion repository but examplecom/pkg1/pkg2 points to a Git repository If the Subversion repository includes a Git check ...
An arbitrary command execution flaw was found in the way Go's "go get" command handled the checkout of source code repositories A remote attacker capable of hosting malicious repositories could potentially use this flaw to cause arbitrary command execution on the client side ...
Arch Linux Security Advisory ASA-201710-16 ========================================== Severity: High Date : 2017-10-12 CVE-ID : CVE-2017-15041 Package : go-pie Type : arbitrary command execution Remote : Yes Link : securityarchlinuxorg/AVG-442 Summary ======= The package go-pie before version 2:191-1 is vulnerable to arbit ...
Arch Linux Security Advisory ASA-201710-15 ========================================== Severity: High Date : 2017-10-12 CVE-ID : CVE-2017-15041 Package : go Type : arbitrary command execution Remote : Yes Link : securityarchlinuxorg/AVG-442 Summary ======= The package go before version 2:191-1 is vulnerable to arbitrary com ...
Go before 184 and 19x before 191 allows "go get" remote command execution Using custom domains, it is possible to arrange things so that examplecom/pkg1 points to a Subversion repository but examplecom/pkg1/pkg2 points to a Git repository If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is don ...
Arbitrary code execution during go get or go get -dGo before 184 and 19x before 191 allows "go get" remote command execution Using custom domains, it is possible to arrange things so that examplecom/pkg1 points to a Subversion repository but examplecom/pkg1/pkg2 points to a Git repository If the Subversion repository includes a Git checko ...