All 7 CVE vulnerabilities found in Shared library, with AI-generated Chinese analysis, references, and POCs.
Vendor: HashiCorp
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-8052 | Nomad's exec2 task driver vulnerable to arbitrary file read/write on client host through symlink attack CWE-59 | 6.0 | Medium | 2026-05-12 |
| CVE-2026-0969 | Arbitrary code execution in React server-side rendering of untrusted MDX content CWE-94 | 8.8 | High | 2026-02-12 |
| CVE-2025-8959 | HashiCorp go-getter Vulnerable to Arbitrary Read through Symlink Attack CWE-59 | 7.5 | High | 2025-08-15 |
| CVE-2025-0377 | HashiCorp go-slug Vulnerable to Zip Slip Attack CWE-59 | 7.5 | High | 2025-01-21 |
| CVE-2024-6257 | HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation CWE-77 | 8.4 | High | 2024-06-25 |
| CVE-2024-6104 | go-retryablehttp can leak basic auth credentials to log files CWE-532 | 6.0 | Medium | 2024-06-24 |
| CVE-2024-3817 | HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches CWE-88 | 9.8 | Critical | 2024-04-17 |
All 7 known CVE vulnerabilities affecting Shared library with full Chinese analysis, references, and POCs where available.