Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-a473-9skg-tkbn
Vulnerability ID VCID-a473-9skg-tkbn
Aliases CVE-2023-24540
Summary Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service.
Status Published
Exploitability 0.5
Weighted Severity 7.3
Risk 3.6
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-176 Improper Handling of Unicode Encoding
System Score Found at
cvssv3 8.1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
epss 0.00246 https://api.first.org/data/v1/epss?cve=CVE-2023-24540
cvssv3.1 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json
https://api.first.org/data/v1/epss?cve=CVE-2023-24540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24540
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2196027 https://bugzilla.redhat.com/show_bug.cgi?id=2196027
GLSA-202408-07 https://security.gentoo.org/glsa/202408-07
RHSA-2023:3318 https://access.redhat.com/errata/RHSA-2023:3318
RHSA-2023:3319 https://access.redhat.com/errata/RHSA-2023:3319
RHSA-2023:3323 https://access.redhat.com/errata/RHSA-2023:3323
RHSA-2023:3366 https://access.redhat.com/errata/RHSA-2023:3366
RHSA-2023:3367 https://access.redhat.com/errata/RHSA-2023:3367
RHSA-2023:3379 https://access.redhat.com/errata/RHSA-2023:3379
RHSA-2023:3409 https://access.redhat.com/errata/RHSA-2023:3409
RHSA-2023:3410 https://access.redhat.com/errata/RHSA-2023:3410
RHSA-2023:3415 https://access.redhat.com/errata/RHSA-2023:3415
RHSA-2023:3435 https://access.redhat.com/errata/RHSA-2023:3435
RHSA-2023:3445 https://access.redhat.com/errata/RHSA-2023:3445
RHSA-2023:3545 https://access.redhat.com/errata/RHSA-2023:3545
RHSA-2023:3612 https://access.redhat.com/errata/RHSA-2023:3612
RHSA-2023:3624 https://access.redhat.com/errata/RHSA-2023:3624
RHSA-2023:3644 https://access.redhat.com/errata/RHSA-2023:3644
RHSA-2023:3905 https://access.redhat.com/errata/RHSA-2023:3905
RHSA-2023:3910 https://access.redhat.com/errata/RHSA-2023:3910
RHSA-2023:3911 https://access.redhat.com/errata/RHSA-2023:3911
RHSA-2023:3914 https://access.redhat.com/errata/RHSA-2023:3914
RHSA-2023:3915 https://access.redhat.com/errata/RHSA-2023:3915
RHSA-2023:3918 https://access.redhat.com/errata/RHSA-2023:3918
RHSA-2023:4289 https://access.redhat.com/errata/RHSA-2023:4289
RHSA-2023:4335 https://access.redhat.com/errata/RHSA-2023:4335
RHSA-2023:4420 https://access.redhat.com/errata/RHSA-2023:4420
RHSA-2023:4421 https://access.redhat.com/errata/RHSA-2023:4421
RHSA-2023:4470 https://access.redhat.com/errata/RHSA-2023:4470
RHSA-2023:4627 https://access.redhat.com/errata/RHSA-2023:4627
RHSA-2023:4664 https://access.redhat.com/errata/RHSA-2023:4664
RHSA-2023:5376 https://access.redhat.com/errata/RHSA-2023:5376
RHSA-2023:5947 https://access.redhat.com/errata/RHSA-2023:5947
RHSA-2023:6346 https://access.redhat.com/errata/RHSA-2023:6346
RHSA-2023:6363 https://access.redhat.com/errata/RHSA-2023:6363
RHSA-2023:6402 https://access.redhat.com/errata/RHSA-2023:6402
RHSA-2023:6473 https://access.redhat.com/errata/RHSA-2023:6473
RHSA-2023:6474 https://access.redhat.com/errata/RHSA-2023:6474
RHSA-2023:6938 https://access.redhat.com/errata/RHSA-2023:6938
RHSA-2023:6939 https://access.redhat.com/errata/RHSA-2023:6939
RHSA-2024:2944 https://access.redhat.com/errata/RHSA-2024:2944
RHSA-2024:4119 https://access.redhat.com/errata/RHSA-2024:4119
USN-6140-1 https://usn.ubuntu.com/6140-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.47834
EPSS Score 0.00246
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:03:16.771833+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/202408-07 38.0.0