Vulnerability Details CVE-2019-12159
GoHTTP through 2017-07-25 has a stack-based buffer over-read in the scan function (when called from getRequestType) via a long URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2019-12159
-
cpe:2.3:a:gohttp_project:gohttp:2013-09-30
-
cpe:2.3:a:gohttp_project:gohttp:2013-11-07
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-15
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-16
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-22
-
cpe:2.3:a:gohttp_project:gohttp:2017-04-18
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-12
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-24
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-25