CVE-2019-17596 vulnerability in GoLang and Other Products
Published on October 24, 2019

Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-17596

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-17596 are published in these products:

GoLang Go

Red Hat Developer Tools

Debian Linux

Fedora Project Fedora

OpenSuse Leap

Red Hat Enterprise Linux (RHEL)

Red Hat Enterprise Linux Server

Arista Cloudvision Portal

Arista Terminattr

Arista Eos

Arista Mos

Exploit Probability

EPSS

2.34%

Percentile

84.61%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-17596 vulnerability in GoLang and Other ProductsPublished on October 24, 2019

Products Associated with CVE-2019-17596

Exploit Probability

CVE-2019-17596 vulnerability in GoLang and Other Products
Published on October 24, 2019