CNNVD-202506-1618 Information
CNNVD ID
CNNVD-202506-1618
Related CVE
- CNNVD Published: 2025-06-11
Description (Chinese)
Google Go是美国谷歌(Google)公司的一种静态强类型、编译型、并发型,并具有垃圾回收功能的编程语言。 Google Go存在安全漏洞,该漏洞源于Proxy-Authorization和Proxy-Authenticate标头持久化,可能导致敏感信息泄露。
Description (English)
Google Go is a static type, compiler, hairdresser of Google and a programme language with a garbage recovery function. There is a security loophole in Google Go, which stems from the permanentization of Proxy-Authorization and Proxy-Authentity markers, which may lead to the disclosure of sensitive information.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
谷歌
Published
2025-06-11
Last Modified
2026-02-24
References
https://go.dev/issue/73816 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://go.dev/cl/679257 https://pkg.go.dev/vuln/GO-2025-3751 https://nvd.nist.gov/vuln/detail/CVE-2025-4673 https://vigilance.fr/vulnerability/Go-information-disclosure-via-Net-