{"uuid": "688f3518-0327-4343-b3e1-e2f446dda99c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-6574", "type": "seen", "source": "https://t.me/arpsyndicate/1657", "content": "#ExploitObserverAlert\n\nCVE-2018-6574\n\nDESCRIPTION: Exploit Observer has 123 entries related to CVE-2018-6574. Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.\n\nFIRST-EPSS: 0.007250000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-12-10T16:40:21.000000Z"}