[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-27140":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T08:55:34.825Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":24,"downstream":25,"duplicates":74,"related":75,"reserved_at":9,"published_at":98,"modified_at":99,"state":100,"summary":101,"references_raw":110,"kevs":136,"epss":137,"epss_history":140,"metrics":316,"affected":324},"CVE-2026-27140","SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-863","Incorrect Authorization","The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.","weakness","Incomplete","Class","High",[],[],[22,23],"GO-2026-4871","BIT-golang-2026-27140",[],[26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72],{"_key":27},"OPENSUSE-SU-2026:10514-1",{"_key":29},"OPENSUSE-SU-2026:10525-1",{"_key":31},"SUSE-SU-2026:1320-1",{"_key":33},"SUSE-SU-2026:1321-1",{"_key":35},"OPENSUSE-SU-2026:20570-1",{"_key":37},"OPENSUSE-SU-2026:20571-1",{"_key":39},"SUSE-SU-2026:1580-1",{"_key":41},"SUSE-SU-2026:1581-1",{"_key":43},"DEBIAN-CVE-2026-27140",{"_key":45},"OPENSUSE-SU-2026:10673-1",{"_key":47},"RHSA-2026:16494",{"_key":49},"RHSA-2026:16497",{"_key":51},"RHSA-2026:16498",{"_key":53},"RHSA-2026:16694",{"_key":55},"RHSA-2026:16697",{"_key":57},"RHSA-2026:16698",{"_key":59},"MGASA-2026-0143",{"_key":61},"MGASA-2026-0147",{"_key":63},"UBUNTU-CVE-2026-27140",{"_key":65},"RHSA-2026:10217",{"_key":67},"RHSA-2026:10219",{"_key":69},"RHSA-2026:10704",{"_key":71},"RHSA-2026:16021",{"_key":73},"RHSA-2026:16024",[],[76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96],{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":45},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":97},"CGA-7MQ7-FV93-8Q6V","2026-04-08T01:06:57.893Z","2026-04-13T13:22:34.117Z","Analyzed",{"cisa_kev":102,"cisa_ransomware":102,"cisa_vendor":9,"epss_severity":103,"epss_score":104,"severity":105,"severity_score":106,"severity_version":107,"severity_source":108,"severity_vector":109,"severity_status":100},false,"low",0.00015,"high",8.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[111,119,125,131],{"url":112,"sources":113,"tags":116},"https://go.dev/cl/763768",[108,114,115],"nvd","osv_go",[117,118],"FIX","Release Notes",{"url":120,"sources":121,"tags":122},"https://go.dev/issue/78335",[108,114,115],[123,124],"REPORT","Issue Tracking",{"url":126,"sources":127,"tags":128},"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",[108,114,115],[129,118,130],"WEB","Mailing List",{"url":132,"sources":133,"tags":134},"https://pkg.go.dev/vuln/GO-2026-4871",[108,114],[135],"Vendor Advisory",[],{"date":138,"score":104,"percentile":139},"2026-06-05",0.03532,[141,145,148,151,153,156,159,163,165,168,172,175,178,181,184,187,190,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,238,241,244,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,315],{"date":142,"score":143,"percentile":144},"2026-04-08",0.00008,0.00655,{"date":146,"score":143,"percentile":147},"2026-04-09",0.00649,{"date":149,"score":143,"percentile":150},"2026-04-10",0.00651,{"date":152,"score":143,"percentile":147},"2026-04-11",{"date":154,"score":143,"percentile":155},"2026-04-12",0.00644,{"date":157,"score":143,"percentile":158},"2026-04-13",0.00646,{"date":160,"score":161,"percentile":162},"2026-04-14",0.0002,0.05329,{"date":164,"score":161,"percentile":162},"2026-04-15",{"date":166,"score":161,"percentile":167},"2026-04-16",0.05345,{"date":169,"score":170,"percentile":171},"2026-04-17",0.00014,0.02632,{"date":173,"score":170,"percentile":174},"2026-04-18",0.02635,{"date":176,"score":170,"percentile":177},"2026-04-19",0.02626,{"date":179,"score":170,"percentile":180},"2026-04-20",0.02613,{"date":182,"score":170,"percentile":183},"2026-04-21",0.02746,{"date":185,"score":170,"percentile":186},"2026-04-22",0.02759,{"date":188,"score":170,"percentile":189},"2026-04-23",0.02779,{"date":191,"score":170,"percentile":192},"2026-04-24",0.02735,{"date":194,"score":170,"percentile":195},"2026-04-25",0.02747,{"date":197,"score":170,"percentile":198},"2026-04-26",0.02722,{"date":200,"score":170,"percentile":201},"2026-04-27",0.02738,{"date":203,"score":170,"percentile":204},"2026-04-28",0.02761,{"date":206,"score":170,"percentile":207},"2026-04-29",0.02776,{"date":209,"score":170,"percentile":210},"2026-04-30",0.02782,{"date":212,"score":170,"percentile":213},"2026-05-01",0.0278,{"date":215,"score":170,"percentile":216},"2026-05-02",0.02762,{"date":218,"score":170,"percentile":219},"2026-05-03",0.02763,{"date":221,"score":170,"percentile":222},"2026-05-04",0.02755,{"date":224,"score":170,"percentile":225},"2026-05-05",0.02748,{"date":227,"score":170,"percentile":228},"2026-05-06",0.02742,{"date":230,"score":170,"percentile":231},"2026-05-07",0.02765,{"date":233,"score":170,"percentile":234},"2026-05-08",0.02773,{"date":236,"score":170,"percentile":237},"2026-05-09",0.02801,{"date":239,"score":104,"percentile":240},"2026-05-10",0.0346,{"date":242,"score":104,"percentile":243},"2026-05-11",0.03451,{"date":245,"score":104,"percentile":246},"2026-05-12",0.03458,{"date":248,"score":104,"percentile":249},"2026-05-13",0.03482,{"date":251,"score":104,"percentile":252},"2026-05-14",0.03495,{"date":254,"score":104,"percentile":255},"2026-05-15",0.03512,{"date":257,"score":104,"percentile":258},"2026-05-16",0.03521,{"date":260,"score":104,"percentile":261},"2026-05-17",0.0352,{"date":263,"score":104,"percentile":264},"2026-05-18",0.03492,{"date":266,"score":104,"percentile":267},"2026-05-19",0.03486,{"date":269,"score":104,"percentile":270},"2026-05-20",0.03489,{"date":272,"score":104,"percentile":273},"2026-05-21",0.03487,{"date":275,"score":104,"percentile":276},"2026-05-22",0.03663,{"date":278,"score":104,"percentile":279},"2026-05-23",0.03649,{"date":281,"score":104,"percentile":282},"2026-05-24",0.03638,{"date":284,"score":104,"percentile":285},"2026-05-25",0.03614,{"date":287,"score":104,"percentile":288},"2026-05-26",0.03599,{"date":290,"score":104,"percentile":291},"2026-05-27",0.03623,{"date":293,"score":104,"percentile":294},"2026-05-28",0.03598,{"date":296,"score":104,"percentile":297},"2026-05-29",0.0361,{"date":299,"score":104,"percentile":300},"2026-05-30",0.03633,{"date":302,"score":104,"percentile":303},"2026-05-31",0.03618,{"date":305,"score":104,"percentile":306},"2026-06-01",0.03558,{"date":308,"score":104,"percentile":309},"2026-06-02",0.03536,{"date":311,"score":104,"percentile":312},"2026-06-03",0.03524,{"date":314,"score":104,"percentile":312},"2026-06-04",{"date":138,"score":104,"percentile":139},[317,322],{"source":108,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":318,"cvss_v4_0":9},{"baseScore":106,"baseSeverity":319,"vectorString":109,"impactScore":320,"exploitabilityScore":321},"HIGH",9.8,7.2,{"source":114,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":323,"cvss_v4_0":9},{"baseScore":106,"baseSeverity":319,"vectorString":109,"impactScore":320,"exploitabilityScore":321},[325,340,350],{"ecosystem":9,"name":326,"vendor":327,"product":326,"cpe_part":328,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":329},"cmd/go","go toolchain","a",[330,335],{"version":331,"is_range":332,"range_type":108,"version_start":9,"version_start_type":9,"version_end":333,"version_end_type":334,"fixed_in":9},"\u003C 1.25.9",true,"1.25.9","excluding",{"version":336,"is_range":332,"range_type":108,"version_start":337,"version_start_type":338,"version_end":339,"version_end_type":334,"fixed_in":9},">= 1.26.0-0, \u003C 1.26.2","1.26.0-0","including","1.26.2",{"ecosystem":9,"name":341,"vendor":342,"product":341,"cpe_part":328,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":343},"go","golang",[344,347],{"version":345,"is_range":332,"range_type":346,"version_start":9,"version_start_type":9,"version_end":333,"version_end_type":334,"fixed_in":9},"lt1.25.9","cpe",{"version":348,"is_range":332,"range_type":346,"version_start":349,"version_start_type":338,"version_end":339,"version_end_type":334,"fixed_in":9},"gte1.26.0_lt1.26.2","1.26.0",{"ecosystem":351,"name":352,"vendor":351,"product":352,"cpe_part":9,"purl_type":342,"purl_namespace":9,"purl_name":352,"source":9,"versions":353},"Go","toolchain",[354],{"version":355,"is_range":332,"range_type":356,"version_start":337,"version_start_type":338,"version_end":339,"version_end_type":334,"fixed_in":9},"gte1_26_0_0_lt1_26_2","semver"]