CNNVD-202508-623 Information

CNNVD ID

CNNVD-202508-623

Related CVE

CVE-2025-47908

• CNNVD Published: 2025-08-06

Description (Chinese)

Go CORS handler是Olivier Poitrey个人开发者的一个处理CORS请求的可配置处理程序。 Go CORS handler存在安全漏洞，该漏洞源于处理恶意预检请求时可能导致堆分配过多，可能导致拒绝服务。

Description (English)

Go CORS Handler is a configured processor for the processing of CORS requests by Olivier Poitrey’s personal developer. Go CORS Handler has a security loophole, which stems from the fact that processing a malicious pre-screening request may lead to over-allocation and to the denial of services.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-06

Last Modified

2026-02-24

References

https://github.com/rs/cors/issues/170 https://github.com/rs/cors/pull/171 https://pkg.go.dev/vuln/GO-2024-2883