CNNVD-202601-4666 Information
Jan 28, 2026
cve
CNNVD ID
CNNVD-202601-4666
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
Google Go是美国谷歌(Google)公司的一种静态强类型、编译型、并发型,并具有垃圾回收功能的编程语言。 Google Go存在安全漏洞,该漏洞源于下载和构建具有恶意版本字符串的模块可能导致本地代码执行或任意文件写入。
Description (English)
Google Go is a static type, compiler, hairdresser of Google and a programme language with a garbage recovery function. Google Go has a security loophole, which stems from the possibility that downloading and constructing a module with a malicious version of a string could lead to local code execution or any file writing.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
谷歌
Published
2026-01-28
Last Modified
2026-02-24
References
https://go.dev/cl/736710 https://go.dev/issue/77099 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://pkg.go.dev/vuln/GO-2026-4338