CVE-2018-6574

Published: Feb 7, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.

Affected (13)

Products: Golang: Go · Debian: Debian Linux · Redhat: Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server Tus

1 product

1 product

4 products

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Golang Go	Up to 1.8.6
Golang Go	Version 1.10 beta1
Golang Go	Version 1.10 beta2
Golang Go	Version 1.10 rc1
Golang Go	Version 1.9.1
Golang Go	Version 1.9.2
Golang Go	Version 1.9.3
Golang Go	Version 1.9

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 9.0

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.6

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (14)

https://access.redhat.com/errata/RHSA-2018:0878

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1304

Source: cve@mitre.org

Third Party Advisory

https://github.com/KINGSABRI/CVE-in-Ruby/tree/master/CVE-2018-6574

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/golang/go/issues/23672

Source: cve@mitre.org

Issue TrackingThird Party Advisory

https://groups.google.com/forum/#%21topic/golang-nuts/Gbhh1NxAjMU

Source: cve@mitre.org

https://groups.google.com/forum/#%21topic/golang-nuts/sprOaQ5m3Dk

Source: cve@mitre.org

https://www.debian.org/security/2019/dsa-4380

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0878

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1304

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/KINGSABRI/CVE-in-Ruby/tree/master/CVE-2018-6574

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://github.com/golang/go/issues/23672

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://groups.google.com/forum/#%21topic/golang-nuts/Gbhh1NxAjMU

Source: af854a3a-2127-422b-91ae-364da2661108

https://groups.google.com/forum/#%21topic/golang-nuts/sprOaQ5m3Dk

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.debian.org/security/2019/dsa-4380

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.