CVE-2024-45258

Publication date

2024-08-25 00:00:00

Family

mitre

State

PUBLISHED

Description

The req package before 3.43.4 for Go may send an unintended request when a malformed URL is provided, because cleanHost in http.go intentionally uses a "garbage in, garbage out" design.