CVE-2019-9741 vulnerability in GoLang and Other Products
Published on March 13, 2019

An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-9741

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-9741 are published in these products:

GoLang Go

Red Hat Developer Tools

Debian Linux

Fedora Project Fedora

Red Hat Enterprise Linux (RHEL)

Exploit Probability

EPSS

3.34%

Percentile

87.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-9741 vulnerability in GoLang and Other ProductsPublished on March 13, 2019

Products Associated with CVE-2019-9741

Exploit Probability

CVE-2019-9741 vulnerability in GoLang and Other Products
Published on March 13, 2019