[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-30629":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":177,"aliases":187,"duplicate_of":9,"upstream":190,"downstream":191,"duplicates":242,"related":243,"reserved_at":9,"published_at":250,"modified_at":251,"state":252,"summary":253,"references_raw":260,"kevs":290,"epss":291,"epss_history":294,"metrics":561,"affected":569},"CVE-2022-30629","Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket ages during session resumption.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-330","Use of Insufficiently Random Values","The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.","weakness","Stable","Class","High",[20,145,173],{"id":21,"name":22,"techniques":23},"CAPEC-112","Brute Force",[24],{"id":25,"name":22,"tactics":26,"countermeasures":30},"T1110",[27],{"id":28,"name":29},"TA0031","Credential Access",[31,36,40,44,48,52,56,60,64,68,72,76,80,84,89,93,98,103,107,111,115,119,123,127,131,136,141],{"id":32,"name":33,"tactic":34},"D3-CCSA","Credential Compromise Scope Analysis",{"name":35},"Detect",{"id":37,"name":38,"tactic":39},"D3-AEM","Application Exception Monitoring",{"name":35},{"id":41,"name":42,"tactic":43},"D3-OPM","Operational Process Monitoring",{"name":35},{"id":45,"name":46,"tactic":47},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":35},{"id":49,"name":50,"tactic":51},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":35},{"id":53,"name":54,"tactic":55},"D3-CSPP","Client-server Payload Profiling",{"name":35},{"id":57,"name":58,"tactic":59},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":35},{"id":61,"name":62,"tactic":63},"D3-NTSA","Network Traffic Signature Analysis",{"name":35},{"id":65,"name":66,"tactic":67},"D3-APCA","Application Protocol Command Analysis",{"name":35},{"id":69,"name":70,"tactic":71},"D3-NTCD","Network Traffic Community Deviation",{"name":35},{"id":73,"name":74,"tactic":75},"D3-RTSD","Remote Terminal Session Detection",{"name":35},{"id":77,"name":78,"tactic":79},"D3-CAA","Connection Attempt Analysis",{"name":35},{"id":81,"name":82,"tactic":83},"D3-ANAA","Administrative Network Activity Analysis",{"name":35},{"id":85,"name":86,"tactic":87},"D3-CR","Credential Revocation",{"name":88},"Evict",{"id":90,"name":91,"tactic":92},"D3-ANCI","Authentication Cache Invalidation",{"name":88},{"id":94,"name":95,"tactic":96},"D3-DUC","Decoy User Credential",{"name":97},"Deceive",{"id":99,"name":100,"tactic":101},"D3-CH","Credential Hardening",{"name":102},"Harden",{"id":104,"name":105,"tactic":106},"D3-MFA","Multi-factor Authentication",{"name":102},{"id":108,"name":109,"tactic":110},"D3-CRO","Credential Rotation",{"name":102},{"id":112,"name":113,"tactic":114},"D3-PR","Password Rotation",{"name":102},{"id":116,"name":117,"tactic":118},"D3-PWA","Password Authentication",{"name":102},{"id":120,"name":121,"tactic":122},"D3-CDP","Change Default Password",{"name":102},{"id":124,"name":125,"tactic":126},"D3-SPP","Strong Password Policy",{"name":102},{"id":128,"name":129,"tactic":130},"D3-OTP","One-time Password",{"name":102},{"id":132,"name":133,"tactic":134},"D3-RIC","Reissue Credential",{"name":135},"Restore",{"id":137,"name":138,"tactic":139},"D3-CTS","Credential Transmission Scoping",{"name":140},"Isolate",{"id":142,"name":143,"tactic":144},"D3-NTF","Network Traffic Filtering",{"name":140},{"id":146,"name":147,"techniques":148},"CAPEC-485","Signature Spoofing by Key Recreation",[149],{"id":150,"name":151,"tactics":152,"countermeasures":154},"T1552.004","Private Keys",[153],{"id":28,"name":29},[155,157,159,161,163,165,167,169,171],{"id":32,"name":33,"tactic":156},{"name":35},{"id":85,"name":86,"tactic":158},{"name":88},{"id":90,"name":91,"tactic":160},{"name":88},{"id":94,"name":95,"tactic":162},{"name":97},{"id":99,"name":100,"tactic":164},{"name":102},{"id":104,"name":105,"tactic":166},{"name":102},{"id":108,"name":109,"tactic":168},{"name":102},{"id":132,"name":133,"tactic":170},{"name":135},{"id":137,"name":138,"tactic":172},{"name":140},{"id":174,"name":175,"techniques":176},"CAPEC-59","Session Credential Falsification through Prediction",[],[178],{"_key":179,"name":180,"source":181,"url":182,"maturity":183,"reliability_score":184,"verified":185,"type":9,"platforms":186,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_D3D527B8CAF75BF8","Exploit Reference (go.dev)","reference","https://go.dev/issue/52814","unknown",0.2,false,[],[188,189],"GO-2022-0531","BIT-golang-2022-30629",[],[192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240],{"_key":193},"SUSE-SU-2022:2004-1",{"_key":195},"SUSE-SU-2022:2005-1",{"_key":197},"SUSE-SU-2023:2312-1",{"_key":199},"OPENSUSE-SU-2024:12123-1",{"_key":201},"OPENSUSE-SU-2024:12124-1",{"_key":203},"UBUNTU-CVE-2022-30629",{"_key":205},"MGASA-2022-0231",{"_key":207},"USN-6038-1",{"_key":209},"DEBIAN-CVE-2022-30629",{"_key":211},"USN-6038-2",{"_key":213},"RHSA-2022:6102",{"_key":215},"RHSA-2022:6277",{"_key":217},"RHSA-2022:6535",{"_key":219},"RHSA-2023:2253",{"_key":221},"RHSA-2023:2282",{"_key":223},"RHSA-2023:2283",{"_key":225},"RHSA-2023:2367",{"_key":227},"RHSA-2023:3914",{"_key":229},"RHSA-2022:5775",{"_key":231},"RHSA-2022:5799",{"_key":233},"RHSA-2022:5866",{"_key":235},"RHSA-2022:6042",{"_key":237},"RHSA-2023:0407",{"_key":239},"RHSA-2023:1275",{"_key":241},"RHSA-2023:2758",[],[244,245,246,247,248,249],{"_key":193},{"_key":195},{"_key":197},{"_key":199},{"_key":201},{"_key":205},"2022-08-09T20:17:31.000Z","2026-03-06T19:12:16.725Z","Modified",{"cisa_kev":185,"cisa_ransomware":185,"cisa_vendor":9,"epss_severity":254,"epss_score":255,"severity":254,"severity_score":256,"severity_version":257,"severity_source":258,"severity_vector":259,"severity_status":252},"low",0.00074,3.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",[261,269,274,281,286],{"url":262,"sources":263,"tags":266},"https://go.dev/cl/405994",[264,258,265],"cve.org","osv_go",[267,268],"Patch","FIX",{"url":270,"sources":271,"tags":272},"https://go.googlesource.com/go/+/fe4de36198794c447fbd9d7cc2d7199a506c76a5",[264,258,265],[273,267,268],"Mailing List",{"url":182,"sources":275,"tags":276},[264,258,265],[277,278,279,280],"Exploit","Issue Tracking","Vendor Advisory","REPORT",{"url":282,"sources":283,"tags":284},"https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg/m/IWz5T6x7AAAJ",[264,258,265],[273,279,285],"WEB",{"url":287,"sources":288,"tags":289},"https://pkg.go.dev/vuln/GO-2022-0531",[264,258],[279],[],{"date":292,"score":255,"percentile":293},"2026-06-04",0.22401,[295,299,302,304,307,310,313,316,319,322,325,328,331,334,337,341,344,347,350,353,356,359,362,365,368,371,375,378,381,384,387,390,393,395,398,400,403,406,409,412,415,418,420,423,426,429,432,435,438,441,444,447,450,453,456,459,462,465,468,471,474,477,480,483,486,489,492,495,498,501,504,507,510,513,516,519,522,525,528,530,533,536,539,542,545,548,550,553,555,558],{"date":296,"score":297,"percentile":298},"2025-11-04",0.00066,0.20583,{"date":300,"score":297,"percentile":301},"2025-11-05",0.20586,{"date":303,"score":297,"percentile":301},"2025-11-06",{"date":305,"score":297,"percentile":306},"2025-11-07",0.20591,{"date":308,"score":297,"percentile":309},"2025-11-08",0.20597,{"date":311,"score":297,"percentile":312},"2025-11-09",0.20565,{"date":314,"score":297,"percentile":315},"2025-11-10",0.20525,{"date":317,"score":297,"percentile":318},"2025-11-11",0.20546,{"date":320,"score":297,"percentile":321},"2025-11-12",0.20595,{"date":323,"score":297,"percentile":324},"2025-11-13",0.20609,{"date":326,"score":297,"percentile":327},"2025-11-14",0.20599,{"date":329,"score":297,"percentile":330},"2025-11-15",0.20569,{"date":332,"score":297,"percentile":333},"2025-11-16",0.20524,{"date":335,"score":297,"percentile":336},"2025-11-17",0.2045,{"date":338,"score":339,"percentile":340},"2025-11-18",0.00369,0.55935,{"date":342,"score":339,"percentile":343},"2025-11-19",0.5595,{"date":345,"score":339,"percentile":346},"2025-11-20",0.5594,{"date":348,"score":297,"percentile":349},"2025-11-21",0.20418,{"date":351,"score":297,"percentile":352},"2025-11-22",0.20412,{"date":354,"score":297,"percentile":355},"2025-11-23",0.20376,{"date":357,"score":297,"percentile":358},"2025-11-24",0.20349,{"date":360,"score":297,"percentile":361},"2025-11-25",0.20338,{"date":363,"score":297,"percentile":364},"2025-11-26",0.20328,{"date":366,"score":297,"percentile":367},"2025-11-27",0.20324,{"date":369,"score":297,"percentile":370},"2025-11-28",0.20308,{"date":372,"score":373,"percentile":374},"2025-11-29",0.00068,0.20787,{"date":376,"score":373,"percentile":377},"2025-11-30",0.20783,{"date":379,"score":373,"percentile":380},"2025-12-01",0.20826,{"date":382,"score":373,"percentile":383},"2025-12-02",0.20846,{"date":385,"score":373,"percentile":386},"2025-12-03",0.20859,{"date":388,"score":373,"percentile":389},"2025-12-04",0.20812,{"date":391,"score":373,"percentile":392},"2025-12-05",0.20855,{"date":394,"score":373,"percentile":386},"2025-12-06",{"date":396,"score":373,"percentile":397},"2025-12-07",0.20843,{"date":399,"score":373,"percentile":386},"2025-12-08",{"date":401,"score":373,"percentile":402},"2025-12-09",0.20915,{"date":404,"score":373,"percentile":405},"2025-12-10",0.20987,{"date":407,"score":373,"percentile":408},"2025-12-11",0.21027,{"date":410,"score":373,"percentile":411},"2025-12-12",0.21041,{"date":413,"score":373,"percentile":414},"2025-12-13",0.21042,{"date":416,"score":373,"percentile":417},"2025-12-14",0.21009,{"date":419,"score":373,"percentile":405},"2025-12-15",{"date":421,"score":373,"percentile":422},"2025-12-16",0.21014,{"date":424,"score":373,"percentile":425},"2025-12-17",0.2109,{"date":427,"score":373,"percentile":428},"2025-12-18",0.21174,{"date":430,"score":373,"percentile":431},"2025-12-19",0.21191,{"date":433,"score":297,"percentile":434},"2025-12-20",0.20713,{"date":436,"score":297,"percentile":437},"2025-12-21",0.20664,{"date":439,"score":297,"percentile":440},"2025-12-22",0.20629,{"date":442,"score":297,"percentile":443},"2025-12-23",0.20627,{"date":445,"score":297,"percentile":446},"2025-12-24",0.20654,{"date":448,"score":297,"percentile":449},"2025-12-25",0.20738,{"date":451,"score":297,"percentile":452},"2025-12-26",0.20732,{"date":454,"score":297,"percentile":455},"2025-12-27",0.20731,{"date":457,"score":297,"percentile":458},"2025-12-28",0.20692,{"date":460,"score":297,"percentile":461},"2025-12-29",0.20648,{"date":463,"score":297,"percentile":464},"2025-12-30",0.20631,{"date":466,"score":297,"percentile":467},"2025-12-31",0.20688,{"date":469,"score":297,"percentile":470},"2026-01-01",0.20777,{"date":472,"score":297,"percentile":473},"2026-01-02",0.20779,{"date":475,"score":297,"percentile":476},"2026-01-03",0.20765,{"date":478,"score":297,"percentile":479},"2026-01-04",0.20673,{"date":481,"score":297,"percentile":482},"2026-01-05",0.20665,{"date":484,"score":297,"percentile":485},"2026-01-06",0.20676,{"date":487,"score":297,"percentile":488},"2026-01-07",0.2071,{"date":490,"score":297,"percentile":491},"2026-01-08",0.20756,{"date":493,"score":297,"percentile":494},"2026-01-09",0.20752,{"date":496,"score":297,"percentile":497},"2026-01-10",0.20736,{"date":499,"score":297,"percentile":500},"2026-01-11",0.20704,{"date":502,"score":297,"percentile":503},"2026-01-12",0.20666,{"date":505,"score":297,"percentile":506},"2026-01-13",0.20646,{"date":508,"score":297,"percentile":509},"2026-01-14",0.20703,{"date":511,"score":297,"percentile":512},"2026-01-15",0.20707,{"date":514,"score":297,"percentile":515},"2026-01-16",0.20739,{"date":517,"score":297,"percentile":518},"2026-01-17",0.20744,{"date":520,"score":297,"percentile":521},"2026-01-18",0.20693,{"date":523,"score":297,"percentile":524},"2026-01-19",0.20656,{"date":526,"score":297,"percentile":527},"2026-01-20",0.20636,{"date":529,"score":297,"percentile":327},"2026-01-21",{"date":531,"score":297,"percentile":532},"2026-01-22",0.20575,{"date":534,"score":297,"percentile":535},"2026-01-23",0.2067,{"date":537,"score":297,"percentile":538},"2026-01-24",0.20691,{"date":540,"score":297,"percentile":541},"2026-01-25",0.20613,{"date":543,"score":297,"percentile":544},"2026-01-26",0.20508,{"date":546,"score":297,"percentile":547},"2026-01-27",0.205,{"date":549,"score":297,"percentile":547},"2026-01-28",{"date":551,"score":297,"percentile":552},"2026-01-29",0.20458,{"date":554,"score":297,"percentile":552},"2026-01-30",{"date":556,"score":297,"percentile":557},"2026-01-31",0.20462,{"date":559,"score":297,"percentile":560},"2026-02-01",0.20489,[562,567],{"source":258,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":563,"cvss_v4_0":9},{"baseScore":256,"baseSeverity":564,"vectorString":259,"impactScore":565,"exploitabilityScore":566},"LOW",2.3,4.1,{"source":264,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":568,"cvss_v4_0":9},{"baseScore":256,"baseSeverity":564,"vectorString":259,"impactScore":565,"exploitabilityScore":566},[570,585,595],{"ecosystem":9,"name":571,"vendor":572,"product":571,"cpe_part":573,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":574},"crypto/tls","go standard library","a",[575,580],{"version":576,"is_range":577,"range_type":264,"version_start":9,"version_start_type":9,"version_end":578,"version_end_type":579,"fixed_in":9},"\u003C 1.17.11",true,"1.17.11","excluding",{"version":581,"is_range":577,"range_type":264,"version_start":582,"version_start_type":583,"version_end":584,"version_end_type":579,"fixed_in":9},">= 1.18.0-0, \u003C 1.18.3","1.18.0-0","including","1.18.3",{"ecosystem":9,"name":586,"vendor":587,"product":586,"cpe_part":573,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":588},"go","golang",[589,592],{"version":590,"is_range":577,"range_type":591,"version_start":9,"version_start_type":9,"version_end":578,"version_end_type":579,"fixed_in":9},"lt1.17.11","cpe",{"version":593,"is_range":577,"range_type":591,"version_start":594,"version_start_type":583,"version_end":584,"version_end_type":579,"fixed_in":9},"gte1.18.0_lt1.18.3","1.18.0",{"ecosystem":596,"name":597,"vendor":596,"product":597,"cpe_part":9,"purl_type":587,"purl_namespace":9,"purl_name":597,"source":9,"versions":598},"Go","stdlib",[599],{"version":600,"is_range":577,"range_type":601,"version_start":582,"version_start_type":583,"version_end":584,"version_end_type":579,"fixed_in":9},"gte1_18_0_0_lt1_18_3","semver"]