Skip to content

CVE-2025-47911 #50

Description

@opensourceways-bot

一、漏洞信息
漏洞编号:CVE-2025-47911
漏洞归属组件:net
漏洞归属分支:默认分支
漏洞归属的版本:v0.23.0
漏洞修复版本: 0.45.0
CVSS分值:
 BaseScore: 5.3 Medium
 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

漏洞简述:
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

漏洞公开时间:2026-02-05 18:16:09
漏洞创建时间:2026-06-24 02:58:29
漏洞详情参考链接:
https://nvd.nist.gov/vuln/detail/CVE-2025-47911

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions