CVE-2022-1996

Authorization Bypass Through User-Controlled Key in go-restful in go/github.com/emicklei/go-restful

Identifiers

CVE-2022-1996, GHSA-r48q-9g5r-8q2h

Package Slug

go/github.com/emicklei/go-restful

Vulnerability

Authorization Bypass Through User-Controlled Key in go-restful

Description

Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.

Affected Versions

All versions before 3.8.0

Solution

Upgrade to version 3.8.0 or above.

Last Modified

2022-06-10

source