Security Advisory

CVE-2022-23773

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-11 00:16:08

Last updated 2024-08-03 03:51:45

Assigner mitre

State PUBLISHED

Description

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

← Browse all CVEs View on cve.org ↗