github.com/hashicorp/go-getter vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-4660Highgithub.com/hashicorp/go-getter: HashiCorp's go-getter library may allow arbitrary file readsCVE-2025-8959Highgithub.com/hashicorp/go-getter: HashiCorp go-getter Vulnerable to Symlink AttacksCVE-2024-6257Highgithub.com/hashicorp/go-getter: HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config ManipulationCVE-2024-3817Criticalgithub.com/hashicorp/go-getter: HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git BranchesCVE-2023-0475Mediumgithub.com/hashicorp/go-getter: Data Amplification in HashiCorp go-getterCVE-2022-30323Highgithub.com/hashicorp/go-getter: HashiCorp go-getter unsafe downloads could lead to asymmetric resource exhaustionCVE-2022-30322Highgithub.com/hashicorp/go-getter: HashiCorp go-getter unsafe downloads could lead to arbitrary host accessCVE-2022-26945Criticalgithub.com/hashicorp/go-getter: HashiCorp go-getter command injectionCVE-2022-30321Highgithub.com/hashicorp/go-getter: HashiCorp go-getter unsafe downloadsCVE-2022-29810Mediumgithub.com/hashicorp/go-getter: Insertion of Sensitive Information into Log File in Hashicorp go-getter

Stop the waste.
Protect your environment with Kodem.