Vulnerabilities (CVE)

Filtered by vendor Digitalocean Subscribe
Filtered by product Golang-nanoauth
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-36569 1 Digitalocean 1 Golang-nanoauth 2024-11-21 N/A 9.1 CRITICAL
Authentication is globally bypassed in github.com/nanobox-io/golang-nanoauth between v0.0.0-20160722212129-ac0cc4484ad4 and v0.0.0-20200131131040-063a3fb69896 if ListenAndServe is called with an empty token.