{"url":"http://public2.vulnerablecode.io/api/packages/96207?format=json","purl":"pkg:rpm/redhat/golang@1.19.9-2?arch=el9_2","type":"rpm","namespace":"redhat","name":"golang","version":"1.19.9-2","qualifiers":{"arch":"el9_2"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42106?format=json","vulnerability_id":"VCID-4ufj-v5z1-huec","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24534.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24534.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24534","reference_id":"","reference_type":"","scores":[{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30809","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.3083","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30918","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30888","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30844","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30864","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30833","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30878","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30921","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33669","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00137","scoring_system":"epss","scoring_elements":"0.33636","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36574","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36812","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36692","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.3678","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24534"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184483","reference_id":"2184483","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184483"},{"reference_url":"https://go.dev/cl/481994","reference_id":"481994","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/"}],"url":"https://go.dev/cl/481994"},{"reference_url":"https://go.dev/issue/58975","reference_id":"58975","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/"}],"url":"https://go.dev/issue/58975"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1704","reference_id":"GO-2023-1704","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1704"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230526-0007/","reference_id":"ntap-20230526-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230526-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3167","reference_id":"RHSA-2023:3167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3450","reference_id":"RHSA-2023:3450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3455","reference_id":"RHSA-2023:3455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3536","reference_id":"RHSA-2023:3536","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3536"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3612","reference_id":"RHSA-2023:3612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3624","reference_id":"RHSA-2023:3624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3943","reference_id":"RHSA-2023:3943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4459","reference_id":"RHSA-2023:4459","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4459"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5964","reference_id":"RHSA-2023:5964","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5976","reference_id":"RHSA-2023:5976","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6420","reference_id":"RHSA-2023:6420","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6420"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6832","reference_id":"RHSA-2023:6832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/6038-1/","reference_id":"USN-6038-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-1/"},{"reference_url":"https://usn.ubuntu.com/6038-2/","reference_id":"USN-6038-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-2/"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"},{"reference_url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8","reference_id":"Xdv6JL9ENs8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:14:51Z/"}],"url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"}],"fixed_packages":[],"aliases":["CVE-2023-24534"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4ufj-v5z1-huec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/48743?format=json","vulnerability_id":"VCID-a473-9skg-tkbn","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24540.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24540","reference_id":"","reference_type":"","scores":[{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47834","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47856","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47804","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47857","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47853","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47877","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47846","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47802","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47863","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47917","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47911","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.47864","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.49767","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24540"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24540"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196027","reference_id":"2196027","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196027"},{"reference_url":"https://security.gentoo.org/glsa/202408-07","reference_id":"GLSA-202408-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3323","reference_id":"RHSA-2023:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3379","reference_id":"RHSA-2023:3379","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3379"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3409","reference_id":"RHSA-2023:3409","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3409"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3410","reference_id":"RHSA-2023:3410","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3415","reference_id":"RHSA-2023:3415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3435","reference_id":"RHSA-2023:3435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3545","reference_id":"RHSA-2023:3545","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3545"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3612","reference_id":"RHSA-2023:3612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3624","reference_id":"RHSA-2023:3624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3644","reference_id":"RHSA-2023:3644","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3644"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3905","reference_id":"RHSA-2023:3905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3910","reference_id":"RHSA-2023:3910","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3910"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3911","reference_id":"RHSA-2023:3911","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3911"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3914","reference_id":"RHSA-2023:3914","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3914"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3915","reference_id":"RHSA-2023:3915","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3915"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4289","reference_id":"RHSA-2023:4289","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4289"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4420","reference_id":"RHSA-2023:4420","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4420"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4421","reference_id":"RHSA-2023:4421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4421"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5376","reference_id":"RHSA-2023:5376","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5947","reference_id":"RHSA-2023:5947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4119","reference_id":"RHSA-2024:4119","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4119"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"}],"fixed_packages":[],"aliases":["CVE-2023-24540"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a473-9skg-tkbn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42107?format=json","vulnerability_id":"VCID-b9yc-jqye-afan","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24536.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24536.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24536","reference_id":"","reference_type":"","scores":[{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.1901","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.18993","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19072","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19125","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19131","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19085","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19032","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.18988","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.2163","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21688","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21468","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21373","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.2148","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21486","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24536"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184482","reference_id":"2184482","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184482"},{"reference_url":"https://go.dev/cl/482075","reference_id":"482075","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://go.dev/cl/482075"},{"reference_url":"https://go.dev/cl/482076","reference_id":"482076","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://go.dev/cl/482076"},{"reference_url":"https://go.dev/cl/482077","reference_id":"482077","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://go.dev/cl/482077"},{"reference_url":"https://go.dev/issue/59153","reference_id":"59153","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://go.dev/issue/59153"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1705","reference_id":"GO-2023-1705","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1705"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230526-0007/","reference_id":"ntap-20230526-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230526-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3167","reference_id":"RHSA-2023:3167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3450","reference_id":"RHSA-2023:3450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3455","reference_id":"RHSA-2023:3455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3536","reference_id":"RHSA-2023:3536","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3536"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3612","reference_id":"RHSA-2023:3612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3624","reference_id":"RHSA-2023:3624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3943","reference_id":"RHSA-2023:3943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5964","reference_id":"RHSA-2023:5964","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/7109-1/","reference_id":"USN-7109-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7109-1/"},{"reference_url":"https://usn.ubuntu.com/7111-1/","reference_id":"USN-7111-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7111-1/"},{"reference_url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8","reference_id":"Xdv6JL9ENs8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:16:31Z/"}],"url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"}],"fixed_packages":[],"aliases":["CVE-2023-24536"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b9yc-jqye-afan"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42109?format=json","vulnerability_id":"VCID-evjj-hwvm-fbca","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24538.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24538.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24538","reference_id":"","reference_type":"","scores":[{"value":"0.00646","scoring_system":"epss","scoring_elements":"0.70668","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00646","scoring_system":"epss","scoring_elements":"0.70687","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70869","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70951","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70972","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70965","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70919","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70935","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.7095","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70927","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00654","scoring_system":"epss","scoring_elements":"0.70912","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73402","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73395","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73407","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73406","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24538"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184481","reference_id":"2184481","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184481"},{"reference_url":"https://go.dev/cl/482079","reference_id":"482079","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/"}],"url":"https://go.dev/cl/482079"},{"reference_url":"https://go.dev/issue/59234","reference_id":"59234","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/"}],"url":"https://go.dev/issue/59234"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1703","reference_id":"GO-2023-1703","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1703"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3323","reference_id":"RHSA-2023:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3450","reference_id":"RHSA-2023:3450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3455","reference_id":"RHSA-2023:3455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3536","reference_id":"RHSA-2023:3536","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3536"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3612","reference_id":"RHSA-2023:3612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3624","reference_id":"RHSA-2023:3624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3943","reference_id":"RHSA-2023:3943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5964","reference_id":"RHSA-2023:5964","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0746","reference_id":"RHSA-2024:0746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/6038-1/","reference_id":"USN-6038-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-1/"},{"reference_url":"https://usn.ubuntu.com/6038-2/","reference_id":"USN-6038-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-2/"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"},{"reference_url":"https://usn.ubuntu.com/7061-1/","reference_id":"USN-7061-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7061-1/"},{"reference_url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8","reference_id":"Xdv6JL9ENs8","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-12T17:02:13Z/"}],"url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"}],"fixed_packages":[],"aliases":["CVE-2023-24538"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-evjj-hwvm-fbca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/48744?format=json","vulnerability_id":"VCID-jbd8-1tkr-4bb2","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29400.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29400.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-29400","reference_id":"","reference_type":"","scores":[{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15029","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14905","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15045","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15009","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14972","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14913","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14812","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14819","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14876","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14914","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14918","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14861","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15101","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.14994","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.15988","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-29400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29400"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196029","reference_id":"2196029","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196029"},{"reference_url":"https://go.dev/cl/491617","reference_id":"491617","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:46:30Z/"}],"url":"https://go.dev/cl/491617"},{"reference_url":"https://go.dev/issue/59722","reference_id":"59722","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:46:30Z/"}],"url":"https://go.dev/issue/59722"},{"reference_url":"https://security.gentoo.org/glsa/202408-07","reference_id":"GLSA-202408-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-07"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1753","reference_id":"GO-2023-1753","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:46:30Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1753"},{"reference_url":"https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU","reference_id":"MEb0UyuSMsU","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:46:30Z/"}],"url":"https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3323","reference_id":"RHSA-2023:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3415","reference_id":"RHSA-2023:3415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3435","reference_id":"RHSA-2023:3435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3905","reference_id":"RHSA-2023:3905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4293","reference_id":"RHSA-2023:4293","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4293"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4459","reference_id":"RHSA-2023:4459","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4459"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4472","reference_id":"RHSA-2023:4472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5947","reference_id":"RHSA-2023:5947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6832","reference_id":"RHSA-2023:6832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"}],"fixed_packages":[],"aliases":["CVE-2023-29400"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jbd8-1tkr-4bb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78608?format=json","vulnerability_id":"VCID-rcxs-y7sb-pyb2","summary":"golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24532.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24532.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24532","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07235","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.0732","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07241","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07368","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07325","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07331","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07305","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07279","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07258","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07313","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07339","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07337","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07324","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07315","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07245","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24532"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2223355","reference_id":"2223355","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2223355"},{"reference_url":"https://groups.google.com/g/golang-announce/c/3-TpUx48iQY","reference_id":"3-TpUx48iQY","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:58:31Z/"}],"url":"https://groups.google.com/g/golang-announce/c/3-TpUx48iQY"},{"reference_url":"https://go.dev/cl/471255","reference_id":"471255","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:58:31Z/"}],"url":"https://go.dev/cl/471255"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1621","reference_id":"GO-2023-1621","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:58:31Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4892","reference_id":"RHSA-2023:4892","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4892"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5314","reference_id":"RHSA-2023:5314","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5314"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5935","reference_id":"RHSA-2023:5935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5947","reference_id":"RHSA-2023:5947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5976","reference_id":"RHSA-2023:5976","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"}],"fixed_packages":[],"aliases":["CVE-2023-24532"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcxs-y7sb-pyb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/48742?format=json","vulnerability_id":"VCID-uvxd-979q-ybdy","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24539.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24539.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24539","reference_id":"","reference_type":"","scores":[{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.2049","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20415","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20445","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.204","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20345","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20334","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20336","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20332","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20206","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20201","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20167","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20548","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20357","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21331","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24539"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24539","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24539"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196026","reference_id":"2196026","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196026"},{"reference_url":"https://go.dev/cl/491615","reference_id":"491615","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:39:35Z/"}],"url":"https://go.dev/cl/491615"},{"reference_url":"https://go.dev/issue/59720","reference_id":"59720","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:39:35Z/"}],"url":"https://go.dev/issue/59720"},{"reference_url":"https://security.gentoo.org/glsa/202408-07","reference_id":"GLSA-202408-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-07"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1751","reference_id":"GO-2023-1751","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:39:35Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1751"},{"reference_url":"https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU","reference_id":"MEb0UyuSMsU","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-24T16:39:35Z/"}],"url":"https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3323","reference_id":"RHSA-2023:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3415","reference_id":"RHSA-2023:3415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3435","reference_id":"RHSA-2023:3435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3905","reference_id":"RHSA-2023:3905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4293","reference_id":"RHSA-2023:4293","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4293"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4459","reference_id":"RHSA-2023:4459","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4459"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4472","reference_id":"RHSA-2023:4472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5947","reference_id":"RHSA-2023:5947","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5947"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6346","reference_id":"RHSA-2023:6346","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6402","reference_id":"RHSA-2023:6402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6473","reference_id":"RHSA-2023:6473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6832","reference_id":"RHSA-2023:6832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"}],"fixed_packages":[],"aliases":["CVE-2023-24539"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uvxd-979q-ybdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42108?format=json","vulnerability_id":"VCID-yr11-kwf1-pqfz","summary":"Multiple vulnerabilities have been discovered in Go, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24537.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24537.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24537","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01616","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01536","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01543","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01539","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01528","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01512","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01525","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01526","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01534","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02276","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02281","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03542","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03534","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0354","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03585","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24537"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184484","reference_id":"2184484","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184484"},{"reference_url":"https://go.dev/cl/482078","reference_id":"482078","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/"}],"url":"https://go.dev/cl/482078"},{"reference_url":"https://go.dev/issue/59180","reference_id":"59180","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/"}],"url":"https://go.dev/issue/59180"},{"reference_url":"https://pkg.go.dev/vuln/GO-2023-1702","reference_id":"GO-2023-1702","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/"}],"url":"https://pkg.go.dev/vuln/GO-2023-1702"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3167","reference_id":"RHSA-2023:3167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3318","reference_id":"RHSA-2023:3318","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3318"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3319","reference_id":"RHSA-2023:3319","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3319"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3323","reference_id":"RHSA-2023:3323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3366","reference_id":"RHSA-2023:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3367","reference_id":"RHSA-2023:3367","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3367"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3445","reference_id":"RHSA-2023:3445","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3445"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3450","reference_id":"RHSA-2023:3450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3455","reference_id":"RHSA-2023:3455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3536","reference_id":"RHSA-2023:3536","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3536"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3540","reference_id":"RHSA-2023:3540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3612","reference_id":"RHSA-2023:3612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3624","reference_id":"RHSA-2023:3624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3918","reference_id":"RHSA-2023:3918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3943","reference_id":"RHSA-2023:3943","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3943"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4003","reference_id":"RHSA-2023:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4335","reference_id":"RHSA-2023:4335","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4470","reference_id":"RHSA-2023:4470","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4470"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4627","reference_id":"RHSA-2023:4627","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4627"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4657","reference_id":"RHSA-2023:4657","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4657"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4664","reference_id":"RHSA-2023:4664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5964","reference_id":"RHSA-2023:5964","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5964"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6363","reference_id":"RHSA-2023:6363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6363"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6474","reference_id":"RHSA-2023:6474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6938","reference_id":"RHSA-2023:6938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6939","reference_id":"RHSA-2023:6939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2944","reference_id":"RHSA-2024:2944","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2944"},{"reference_url":"https://usn.ubuntu.com/6038-1/","reference_id":"USN-6038-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-1/"},{"reference_url":"https://usn.ubuntu.com/6038-2/","reference_id":"USN-6038-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6038-2/"},{"reference_url":"https://usn.ubuntu.com/6140-1/","reference_id":"USN-6140-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6140-1/"},{"reference_url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8","reference_id":"Xdv6JL9ENs8","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-12T17:00:19Z/"}],"url":"https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"}],"fixed_packages":[],"aliases":["CVE-2023-24537"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yr11-kwf1-pqfz"}],"fixing_vulnerabilities":[],"risk_score":"4.4","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/golang@1.19.9-2%3Farch=el9_2"}