CVE-2020-26283
MEDIUM6.8EPSS 0.74%Control character injection in console output in github.com/ipfs/go-ipfs
發布日:2021/6/23修改日:2026/3/13
描述
### Impact Control characters are not escaped from console output. This can result in hiding input from the user which could result in the user taking an unknown, malicious action. ### Patches <!-- _Has the problem been patched? What versions should users upgrade to?_ --> - Patched via https://github.com/ipfs/go-ipfs/pull/7831 in v0.8.0 ### For more information If you have any questions or comments about this advisory: * Open an issue in [go-ipfs](http://github.com/ipfs/go-ipfs) * Email us at [[email protected]](mailto:[email protected])
受影響套件(2)
- Go/github.com/ipfs/go-ipfsfrom 0, < 0.8.0
- Go/github.com/ipfs/go-ipfsfrom 0, < 0.8.0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.8 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N |