18Oca
CVE-2024-45336 | Google Go up to 1.22.10/1.23.4 net-http cross-domain policy
A vulnerability, which was classified as problematic, was found in Google Go up to 1.22.10/1.23.4. This affects an unknown part of the component net-http. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is uniquely identified as CVE-2024-45336. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.