Vulnerabilities

CVE-2024-45340

by Fred · 28/01/2025

Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless otherwise set, this only affected credentials stored in the users .netrc file.

More information : https://go.dev/cl/643097

Similar

Tags: Cybersecurity Alert