[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-45339":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":15,"downstream":16,"duplicates":53,"related":54,"reserved_at":9,"published_at":144,"modified_at":145,"state":146,"summary":147,"references_raw":156,"kevs":195,"epss":196,"epss_history":199,"metrics":469,"affected":482},"CVE-2024-45339","When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that sensitive file. To fix that, glog now causes the program to exit (with status code 2) when it finds that the configured log file already exists.",null,[],[],[13,14],"GHSA-6wxm-mpqj-6jpf","GO-2025-3372",[],[17,19,21,23,25,27,29,31,33,35,37,39,41,43,45,47,49,51],{"_key":18},"UBUNTU-CVE-2024-45339",{"_key":20},"SUSE-SU-2025:01985-1",{"_key":22},"SUSE-SU-2025:02150-1",{"_key":24},"SUSE-SU-2025:0580-1",{"_key":26},"SUSE-SU-2025:0622-1",{"_key":28},"SUSE-SU-2025:0624-1",{"_key":30},"SUSE-SU-2025:02149-1",{"_key":32},"SUSE-SU-2025:0297-1",{"_key":34},"SUSE-SU-2025:0429-1",{"_key":36},"SUSE-SU-2025:0611-1",{"_key":38},"SUSE-SU-2025:0623-1",{"_key":40},"OPENSUSE-SU-2025:14710-1",{"_key":42},"OPENSUSE-SU-2025:14815-1",{"_key":44},"DLA-4056-1",{"_key":46},"SUSE-SU-2025:20746-1",{"_key":48},"OPENSUSE-SU-2025:15764-1",{"_key":50},"DEBIAN-CVE-2024-45339",{"_key":52},"RHSA-2025:2223",[],[55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142],{"_key":20},{"_key":22},{"_key":24},{"_key":26},{"_key":28},{"_key":52},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":46},{"_key":48},{"_key":71},"CGA-246R-F3M4-Q52H",{"_key":73},"CGA-273V-WPWP-Q6MF",{"_key":75},"CGA-28Q9-5HP5-98M5",{"_key":77},"CGA-2VFF-H5F5-88VG",{"_key":79},"CGA-45HG-V26H-M86C",{"_key":81},"CGA-4GGQ-36FH-J9Q5",{"_key":83},"CGA-5FPX-C6CW-6R83",{"_key":85},"CGA-5PWR-GPVX-X5PF",{"_key":87},"CGA-5V28-8J3R-RC7X",{"_key":89},"CGA-7GCG-H8M6-XFCH",{"_key":91},"CGA-7RQ5-CX6V-5GG7",{"_key":93},"CGA-86J3-6GH3-WC4G",{"_key":95},"CGA-8QM4-7PF4-V7GJ",{"_key":97},"CGA-9XJQ-GJFV-4CCJ",{"_key":99},"CGA-CH9P-V9J8-8P5F",{"_key":101},"CGA-FPMG-PXCV-3945",{"_key":103},"CGA-FVM2-394P-WWJW",{"_key":105},"CGA-G9H3-RQWC-HGQ5",{"_key":107},"CGA-GCM7-5JVR-VGQC",{"_key":109},"CGA-GXVF-HRH3-X3X4",{"_key":111},"CGA-H632-F8V2-9XC5",{"_key":113},"CGA-HQ99-C54J-G82X",{"_key":115},"CGA-J3X8-495G-CRQ3",{"_key":117},"CGA-J8Q5-P9P5-M5G4",{"_key":119},"CGA-M4XJ-37C3-9RW5",{"_key":121},"CGA-P555-648R-4FG4",{"_key":123},"CGA-PP3P-PGF9-G8H4",{"_key":125},"CGA-PQFP-C4RC-294M",{"_key":127},"CGA-Q6JF-X7GR-3WCX",{"_key":129},"CGA-QPFH-GC4J-VV75",{"_key":131},"CGA-QXPJ-5JR8-MX2Q",{"_key":133},"CGA-R9J4-G995-82GC",{"_key":135},"CGA-W7MM-RJ83-FWJP",{"_key":137},"CGA-WXJ5-J3C3-68X4",{"_key":139},"CGA-XM83-739P-878H",{"_key":141},"CGA-XX5J-9CH9-MW63",{"_key":143},"CGA-RP99-G6QW-FVGX","2025-01-28T01:03:24.105Z","2026-04-30T03:56:03.352Z","Deferred",{"cisa_kev":148,"cisa_ransomware":148,"cisa_vendor":9,"epss_severity":149,"epss_score":150,"severity":151,"severity_score":152,"severity_version":153,"severity_source":154,"severity_vector":155,"severity_status":146},false,"low",0.00072,"high",7.1,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",[157,165,169,173,177,181,185,190],{"url":158,"sources":159,"tags":162},"https://github.com/golang/glog/pull/74/commits/b8741656e406e66d6992bc2c9575e460ecaa0ec2",[154,160,161],"nvd","osv_go",[163,164],"WEB","FIX",{"url":166,"sources":167,"tags":168},"https://github.com/golang/glog/pull/74",[154,160,161],[163,164],{"url":170,"sources":171,"tags":172},"https://groups.google.com/g/golang-announce/c/H-Q4ouHWyKs",[154,160,161],[163],{"url":174,"sources":175,"tags":176},"https://owasp.org/www-community/vulnerabilities/Insecure_Temporary_File",[154,160,161],[163],{"url":178,"sources":179,"tags":180},"https://pkg.go.dev/vuln/GO-2025-3372",[154,160,161],[163],{"url":182,"sources":183,"tags":184},"https://lists.debian.org/debian-lts-announce/2025/02/msg00019.html",[154,160,161],[163],{"url":186,"sources":187,"tags":188},"https://nvd.nist.gov/vuln/detail/CVE-2024-45339",[161],[189],"Advisory",{"url":191,"sources":192,"tags":193},"https://github.com/golang/glog",[161],[194],"PACKAGE",[],{"date":197,"score":150,"percentile":198},"2026-06-04",0.22117,[200,204,207,210,213,216,219,222,225,228,231,234,237,240,242,246,249,252,255,258,261,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,340,343,346,349,352,355,358,361,364,367,370,373,375,378,381,384,387,390,393,396,399,402,405,408,411,413,416,419,422,425,428,431,434,437,440,443,445,448,451,454,457,460,463,466],{"date":201,"score":202,"percentile":203},"2025-11-04",0.00025,0.05546,{"date":205,"score":202,"percentile":206},"2025-11-05",0.05543,{"date":208,"score":202,"percentile":209},"2025-11-06",0.05664,{"date":211,"score":202,"percentile":212},"2025-11-07",0.05677,{"date":214,"score":202,"percentile":215},"2025-11-08",0.05669,{"date":217,"score":202,"percentile":218},"2025-11-09",0.05661,{"date":220,"score":202,"percentile":221},"2025-11-10",0.05638,{"date":223,"score":202,"percentile":224},"2025-11-11",0.05671,{"date":226,"score":202,"percentile":227},"2025-11-12",0.05719,{"date":229,"score":202,"percentile":230},"2025-11-13",0.05749,{"date":232,"score":202,"percentile":233},"2025-11-14",0.05842,{"date":235,"score":202,"percentile":236},"2025-11-15",0.05868,{"date":238,"score":202,"percentile":239},"2025-11-16",0.05883,{"date":241,"score":202,"percentile":236},"2025-11-17",{"date":243,"score":244,"percentile":245},"2025-11-18",0.00074,0.18541,{"date":247,"score":244,"percentile":248},"2025-11-19",0.18557,{"date":250,"score":244,"percentile":251},"2025-11-20",0.18537,{"date":253,"score":202,"percentile":254},"2025-11-21",0.05931,{"date":256,"score":202,"percentile":257},"2025-11-22",0.05881,{"date":259,"score":202,"percentile":260},"2025-11-23",0.05862,{"date":262,"score":263,"percentile":264},"2025-11-24",0.00027,0.0642,{"date":266,"score":263,"percentile":267},"2025-11-25",0.06416,{"date":269,"score":263,"percentile":270},"2025-11-26",0.0643,{"date":272,"score":263,"percentile":273},"2025-11-27",0.06435,{"date":275,"score":263,"percentile":276},"2025-11-28",0.06419,{"date":278,"score":263,"percentile":279},"2025-11-29",0.0646,{"date":281,"score":263,"percentile":282},"2025-11-30",0.06456,{"date":284,"score":263,"percentile":285},"2025-12-01",0.0651,{"date":287,"score":263,"percentile":288},"2025-12-02",0.06522,{"date":290,"score":263,"percentile":291},"2025-12-03",0.06534,{"date":293,"score":263,"percentile":294},"2025-12-04",0.06506,{"date":296,"score":263,"percentile":297},"2025-12-05",0.06558,{"date":299,"score":263,"percentile":300},"2025-12-06",0.06568,{"date":302,"score":263,"percentile":303},"2025-12-07",0.06572,{"date":305,"score":263,"percentile":306},"2025-12-08",0.0657,{"date":308,"score":263,"percentile":309},"2025-12-09",0.06626,{"date":311,"score":263,"percentile":312},"2025-12-10",0.06695,{"date":314,"score":263,"percentile":315},"2025-12-11",0.06697,{"date":317,"score":263,"percentile":318},"2025-12-12",0.06705,{"date":320,"score":263,"percentile":321},"2025-12-13",0.06735,{"date":323,"score":263,"percentile":324},"2025-12-14",0.06716,{"date":326,"score":263,"percentile":327},"2025-12-15",0.06681,{"date":329,"score":263,"percentile":330},"2025-12-16",0.06704,{"date":332,"score":263,"percentile":333},"2025-12-17",0.06795,{"date":335,"score":263,"percentile":336},"2025-12-18",0.06857,{"date":338,"score":263,"percentile":339},"2025-12-19",0.06853,{"date":341,"score":263,"percentile":342},"2025-12-20",0.06849,{"date":344,"score":263,"percentile":345},"2025-12-21",0.06841,{"date":347,"score":263,"percentile":348},"2025-12-22",0.06793,{"date":350,"score":263,"percentile":351},"2025-12-23",0.06786,{"date":353,"score":263,"percentile":354},"2025-12-24",0.06811,{"date":356,"score":263,"percentile":357},"2025-12-25",0.06875,{"date":359,"score":263,"percentile":360},"2025-12-26",0.06881,{"date":362,"score":263,"percentile":363},"2025-12-27",0.06892,{"date":365,"score":263,"percentile":366},"2025-12-28",0.06878,{"date":368,"score":263,"percentile":369},"2025-12-29",0.06859,{"date":371,"score":263,"percentile":372},"2025-12-30",0.06839,{"date":374,"score":263,"percentile":366},"2025-12-31",{"date":376,"score":263,"percentile":377},"2026-01-01",0.06942,{"date":379,"score":263,"percentile":380},"2026-01-02",0.06937,{"date":382,"score":263,"percentile":383},"2026-01-03",0.06928,{"date":385,"score":263,"percentile":386},"2026-01-04",0.06783,{"date":388,"score":263,"percentile":389},"2026-01-05",0.06736,{"date":391,"score":263,"percentile":392},"2026-01-06",0.06731,{"date":394,"score":263,"percentile":395},"2026-01-07",0.06756,{"date":397,"score":263,"percentile":398},"2026-01-08",0.06813,{"date":400,"score":263,"percentile":401},"2026-01-09",0.0683,{"date":403,"score":263,"percentile":404},"2026-01-10",0.06865,{"date":406,"score":263,"percentile":407},"2026-01-11",0.06852,{"date":409,"score":263,"percentile":410},"2026-01-12",0.06822,{"date":412,"score":263,"percentile":354},"2026-01-13",{"date":414,"score":263,"percentile":415},"2026-01-14",0.06924,{"date":417,"score":263,"percentile":418},"2026-01-15",0.06932,{"date":420,"score":263,"percentile":421},"2026-01-16",0.06946,{"date":423,"score":263,"percentile":424},"2026-01-17",0.06959,{"date":426,"score":263,"percentile":427},"2026-01-18",0.06934,{"date":429,"score":263,"percentile":430},"2026-01-19",0.0689,{"date":432,"score":263,"percentile":433},"2026-01-20",0.0685,{"date":435,"score":263,"percentile":436},"2026-01-21",0.06844,{"date":438,"score":263,"percentile":439},"2026-01-22",0.06821,{"date":441,"score":263,"percentile":442},"2026-01-23",0.06886,{"date":444,"score":263,"percentile":377},"2026-01-24",{"date":446,"score":263,"percentile":447},"2026-01-25",0.06919,{"date":449,"score":263,"percentile":450},"2026-01-26",0.069,{"date":452,"score":263,"percentile":453},"2026-01-27",0.06887,{"date":455,"score":263,"percentile":456},"2026-01-28",0.06863,{"date":458,"score":263,"percentile":459},"2026-01-29",0.0686,{"date":461,"score":263,"percentile":462},"2026-01-30",0.06871,{"date":464,"score":263,"percentile":465},"2026-01-31",0.06894,{"date":467,"score":263,"percentile":468},"2026-02-01",0.06943,[470,475,477],{"source":154,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":471,"cvss_v4_0":9},{"baseScore":152,"baseSeverity":472,"vectorString":155,"impactScore":473,"exploitabilityScore":474},"HIGH",8.7,4.6,{"source":160,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":476,"cvss_v4_0":9},{"baseScore":152,"baseSeverity":472,"vectorString":155,"impactScore":473,"exploitabilityScore":474},{"source":161,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":478,"cvss_v4_0":479},{"baseScore":152,"baseSeverity":9,"vectorString":155,"impactScore":473,"exploitabilityScore":474},{"baseScore":480,"baseSeverity":9,"vectorString":481,"impactScore":9,"exploitabilityScore":9},7.2,"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U",[483,492],{"ecosystem":9,"name":484,"vendor":484,"product":484,"cpe_part":485,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":486},"github.com/golang/glog","a",[487],{"version":488,"is_range":489,"range_type":154,"version_start":9,"version_start_type":9,"version_end":490,"version_end_type":491,"fixed_in":9},"\u003C 1.2.4",true,"1.2.4","excluding",{"ecosystem":493,"name":484,"vendor":494,"product":495,"cpe_part":9,"purl_type":496,"purl_namespace":494,"purl_name":495,"source":9,"versions":497},"Go","github.com/golang","glog","golang",[498],{"version":499,"is_range":489,"range_type":500,"version_start":9,"version_start_type":9,"version_end":490,"version_end_type":491,"fixed_in":9},"lt1_2_4","semver"]