Vulnerability Details CVE-2019-12198
In GoHttp through 2017-07-25, there is a stack-based buffer over-read via a long User-Agent header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.1%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2019-12198
-
cpe:2.3:a:gohttp_project:gohttp:2013-09-30
-
cpe:2.3:a:gohttp_project:gohttp:2013-11-07
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-15
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-16
-
cpe:2.3:a:gohttp_project:gohttp:2015-06-22
-
cpe:2.3:a:gohttp_project:gohttp:2017-04-18
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-12
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-24
-
cpe:2.3:a:gohttp_project:gohttp:2017-07-25
-
cpe:2.3:a:gohttp_project:gohttp:20170725