mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-29 16:29:28 +02:00
0xMarcio
1.1 KiB
1.1 KiB
CVE-2022-28131
Description
Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.
POC
Reference
No PoCs from references.
Github
- https://github.com/8-cm/kube-dump
- https://github.com/ARPSyndicate/cvemon
- https://github.com/JakubWierzchowski/manier
- https://github.com/agadecki/malware-cryptominer-container
- https://github.com/drewtwitchell/scancompare
- https://github.com/henriquebesing/container-security
- https://github.com/kb5fls/container-security
- https://github.com/runwhen-contrib/helm-charts
- https://github.com/ruzickap/malware-cryptominer-container