[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-33814":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":23,"downstream":24,"duplicates":67,"related":68,"reserved_at":9,"published_at":90,"modified_at":91,"state":92,"summary":93,"references_raw":102,"kevs":133,"epss":134,"epss_history":137,"metrics":226,"affected":234},"CVE-2026-33814","When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-835","Loop with Unreachable Exit Condition ('Infinite Loop')","The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.","weakness","Incomplete","Base",[],[],[21,22],"GO-2026-4918","BIT-golang-2026-33814",[],[25,27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65],{"_key":26},"OPENSUSE-SU-2026:10723-1",{"_key":28},"DEBIAN-CVE-2026-33814",{"_key":30},"OPENSUSE-SU-2026:10741-1",{"_key":32},"OPENSUSE-SU-2026:10762-1",{"_key":34},"OPENSUSE-SU-2026:10763-1",{"_key":36},"UBUNTU-CVE-2026-33814",{"_key":38},"OPENSUSE-SU-2026:10822-1",{"_key":40},"OPENSUSE-SU-2026:10830-1",{"_key":42},"OPENSUSE-SU-2026:10824-1",{"_key":44},"OPENSUSE-SU-2026:10823-1",{"_key":46},"OPENSUSE-SU-2026:10842-1",{"_key":48},"OPENSUSE-SU-2026:10845-1",{"_key":50},"OPENSUSE-SU-2026:10847-1",{"_key":52},"OPENSUSE-SU-2026:10849-1",{"_key":54},"OPENSUSE-SU-2026:10848-1",{"_key":56},"OPENSUSE-SU-2026:10862-1",{"_key":58},"OPENSUSE-SU-2026:10892-1",{"_key":60},"OPENSUSE-SU-2026:10889-1",{"_key":62},"OPENSUSE-SU-2026:10912-1",{"_key":64},"OPENSUSE-SU-2026:10908-1",{"_key":66},"OPENSUSE-SU-2026:10921-1",[],[69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88],{"_key":26},{"_key":30},{"_key":32},{"_key":34},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":89},"CGA-V7V4-9R6P-X7FC","2026-05-07T19:41:17.631Z","2026-05-08T18:01:02.989Z","Analyzed",{"cisa_kev":94,"cisa_ransomware":94,"cisa_vendor":9,"epss_severity":95,"epss_score":96,"severity":97,"severity_score":98,"severity_version":99,"severity_source":100,"severity_vector":101,"severity_status":92},false,"low",0.00018,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[103,111,115,122,128],{"url":104,"sources":105,"tags":108},"https://go.dev/cl/761581",[100,106,107],"nvd","osv_go",[109,110],"FIX","Patch",{"url":112,"sources":113,"tags":114},"https://go.dev/cl/761640",[100,106,107],[109,110],{"url":116,"sources":117,"tags":118},"https://go.dev/issue/78476",[100,106,107],[119,120,121],"REPORT","Issue Tracking","Mailing List",{"url":123,"sources":124,"tags":125},"https://groups.google.com/g/golang-announce/c/qcCIEXso47M",[100,106,107],[126,127],"WEB","Release Notes",{"url":129,"sources":130,"tags":131},"https://pkg.go.dev/vuln/GO-2026-4918",[100,106],[132],"Vendor Advisory",[],{"date":135,"score":96,"percentile":136},"2026-06-05",0.04988,[138,142,146,149,152,155,159,162,164,167,170,173,176,179,182,185,188,191,194,197,201,204,207,210,213,216,219,222,225],{"date":139,"score":140,"percentile":141},"2026-05-08",0.00008,0.00687,{"date":143,"score":144,"percentile":145},"2026-05-09",0.00019,0.05254,{"date":147,"score":144,"percentile":148},"2026-05-10",0.05272,{"date":150,"score":144,"percentile":151},"2026-05-11",0.05263,{"date":153,"score":144,"percentile":154},"2026-05-12",0.05262,{"date":156,"score":157,"percentile":158},"2026-05-13",0.00025,0.07169,{"date":160,"score":96,"percentile":161},"2026-05-14",0.04916,{"date":163,"score":96,"percentile":161},"2026-05-15",{"date":165,"score":96,"percentile":166},"2026-05-16",0.04926,{"date":168,"score":96,"percentile":169},"2026-05-17",0.04921,{"date":171,"score":96,"percentile":172},"2026-05-18",0.04898,{"date":174,"score":96,"percentile":175},"2026-05-19",0.0489,{"date":177,"score":96,"percentile":178},"2026-05-20",0.04887,{"date":180,"score":96,"percentile":181},"2026-05-21",0.04888,{"date":183,"score":96,"percentile":184},"2026-05-22",0.05079,{"date":186,"score":96,"percentile":187},"2026-05-23",0.05067,{"date":189,"score":96,"percentile":190},"2026-05-24",0.05069,{"date":192,"score":96,"percentile":193},"2026-05-25",0.05057,{"date":195,"score":96,"percentile":196},"2026-05-26",0.05055,{"date":198,"score":199,"percentile":200},"2026-05-27",0.00021,0.06159,{"date":202,"score":96,"percentile":203},"2026-05-28",0.05153,{"date":205,"score":96,"percentile":206},"2026-05-29",0.05165,{"date":208,"score":96,"percentile":209},"2026-05-30",0.05158,{"date":211,"score":96,"percentile":212},"2026-05-31",0.05138,{"date":214,"score":96,"percentile":215},"2026-06-01",0.05077,{"date":217,"score":96,"percentile":218},"2026-06-02",0.05008,{"date":220,"score":96,"percentile":221},"2026-06-03",0.04974,{"date":223,"score":96,"percentile":224},"2026-06-04",0.04968,{"date":135,"score":96,"percentile":136},[227,232],{"source":100,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":228,"cvss_v4_0":9},{"baseScore":98,"baseSeverity":229,"vectorString":101,"impactScore":230,"exploitabilityScore":231},"HIGH",6,10,{"source":106,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":233,"cvss_v4_0":9},{"baseScore":98,"baseSeverity":229,"vectorString":101,"impactScore":230,"exploitabilityScore":231},[235,250,260,270,275,280],{"ecosystem":9,"name":236,"vendor":237,"product":236,"cpe_part":238,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":239},"net/http","go standard library","a",[240,245],{"version":241,"is_range":242,"range_type":100,"version_start":9,"version_start_type":9,"version_end":243,"version_end_type":244,"fixed_in":9},"\u003C 1.25.10",true,"1.25.10","excluding",{"version":246,"is_range":242,"range_type":100,"version_start":247,"version_start_type":248,"version_end":249,"version_end_type":244,"fixed_in":9},">= 1.26.0-0, \u003C 1.26.3","1.26.0-0","including","1.26.3",{"ecosystem":9,"name":251,"vendor":252,"product":251,"cpe_part":238,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":253},"go","golang",[254,257],{"version":255,"is_range":242,"range_type":256,"version_start":9,"version_start_type":9,"version_end":243,"version_end_type":244,"fixed_in":9},"lt1.25.10","cpe",{"version":258,"is_range":242,"range_type":256,"version_start":259,"version_start_type":248,"version_end":249,"version_end_type":244,"fixed_in":9},"gte1.26.0_lt1.26.3","1.26.0",{"ecosystem":261,"name":262,"vendor":263,"product":264,"cpe_part":9,"purl_type":252,"purl_namespace":263,"purl_name":264,"source":9,"versions":265},"Go","golang.org/x/net","golang.org/x","net",[266],{"version":267,"is_range":242,"range_type":268,"version_start":9,"version_start_type":9,"version_end":269,"version_end_type":244,"fixed_in":9},"lt0_53_0","semver","0.53.0",{"ecosystem":9,"name":271,"vendor":252,"product":271,"cpe_part":238,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":272},"http2",[273],{"version":274,"is_range":242,"range_type":256,"version_start":9,"version_start_type":9,"version_end":269,"version_end_type":244,"fixed_in":9},"lt0.53.0",{"ecosystem":261,"name":276,"vendor":261,"product":276,"cpe_part":9,"purl_type":252,"purl_namespace":9,"purl_name":276,"source":9,"versions":277},"stdlib",[278],{"version":279,"is_range":242,"range_type":268,"version_start":247,"version_start_type":248,"version_end":249,"version_end_type":244,"fixed_in":9},"gte1_26_0_0_lt1_26_3",{"ecosystem":9,"name":281,"vendor":262,"product":281,"cpe_part":238,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":282},"golang.org/x/net/http2",[283],{"version":284,"is_range":242,"range_type":100,"version_start":9,"version_start_type":9,"version_end":269,"version_end_type":244,"fixed_in":9},"\u003C 0.53.0"]