CVE-2023-45286 | go-resty prior 2.10.0 HTTP Request sync.Pool.Put information disclosure

Posted by Angelo Barbosa | Nov 28, 2023 | CVE

A vulnerability classified as problematic has been found in go-resty. Affected is the function sync.Pool.Put of the component HTTP Request Handler. The manipulation leads to information disclosure.

This vulnerability is traded as CVE-2023-45286. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-45286 | go-resty prior 2.10.0 HTTP Request sync.Pool.Put information disclosure

Related Posts

CVE-2024-43373 | j4k0xb webcrack up to 2.14.0 on Windows path traversal

CVE-2024-49229 | Arif Nezami Better Author Bio Plugin up to 2.7.10.11 on WordPress cross-site request forgery

CVE-2024-0989 | Sichuan Yougou Technology KuERP up to 1.0.4 Service.php del_sn_db file path traversal

CVE-2023-50977 | GNOME Shell up to 45.2 DNS Request unknown vulnerability