Vulnerabilities
Vulnerable Software
Golang:  Security Vulnerabilities
The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.
CVSS Score
7.5
EPSS Score
0.026
Published
2016-01-27
crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.014
Published
2014-10-07


Contact Us

Shodan ® - All rights reserved