Go up to and including 1.12.5 on Windows mishandles process creation with a nil environment in conjunction with a non-nil token, which allows malicious users to obtain sensitive information or gain privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
golang go |