Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Hashicorp Subscribe
Filtered by product Go-getter

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-26945 1 Hashicorp 1 Go-getter 2023-08-08 7.5 HIGH 9.8 CRITICAL
go-getter up to 1.5.11 and 2.0.2 allowed protocol switching, endless redirect, and configuration bypass via abuse of custom HTTP response header processing. Fixed in 1.6.1 and 2.1.0.
CVE-2022-30322 1 Hashicorp 1 Go-getter 2022-06-07 7.5 HIGH 9.8 CRITICAL
HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 2 of 3).
CVE-2022-30323 1 Hashicorp 1 Go-getter 2022-06-07 7.5 HIGH 9.8 CRITICAL
HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 3 of 3).