golang.org/x/net vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-25680Mediumgolang.org/x/net: Go Net HTML parser is vulnerable to denial of serviceCVE-2025-22872Mediumgolang.org/x/net: golang.org/x/net vulnerable to Cross-site ScriptingCVE-2025-22870Mediumgolang.org/x/net: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/netCVE-2023-45288Mediumnet/http: net/http, x/net/http2: close connections when receiving too many headersCVE-2023-39325Highgolang.org/x/net: HTTP/2 rapid reset can cause excessive work in net/httpCVE-2023-44487Mediumgolang.org/x/net: HTTP/2 Stream Cancellation AttackCVE-2018-17846Highgolang.org/x/net: x/net/html Vulnerable to DoS During HTML ParsingCVE-2023-3978Mediumgolang.org/x/net: Improper rendering of text nodes in golang.org/x/net/htmlCVE-2022-41723Highgolang.org/x/net: golang.org/x/net vulnerable to Uncontrolled Resource ConsumptionCVE-2022-41721Highgolang.org/x/net: golang.org/x/net/http2/h2c vulnerable to request smuggling attackCVE-2022-41717Mediumgolang.org/x/net/http2: golang.org/x/net/http2 vulnerable to possible excessive memory growthCVE-2022-27664Highgolang.org/x/net: golang.org/x/net/http2 Denial of Service vulnerabilityCVE-2021-31525Mediumgolang.org/x/net: golang.org/x/net/http/httpguts vulnerable to Uncontrolled RecursionCVE-2021-33194Highgolang.org/x/net: golang.org/x/net/html Infinite Loop vulnerabilityCVE-2019-9514Highgolang.org/x/net: golang.org/x/net/http vulnerable to a reset floodCVE-2019-9512Highgolang.org/x/net: golang.org/x/net/http vulnerable to ping floodsCVE-2018-17848Highgolang.org/x/net: golang.org/x/net/html Improper Validation of Array Index vulnerabilityCVE-2018-17847Highgolang.org/x/net: golang.org/x/net/html has Improper Restriction of Operations within the Bounds of a Memory BufferCVE-2018-17143Highgolang.org/x/net: golang.org/x/net/html has Improper Restriction of Operations within the Bounds of a Memory BufferCVE-2018-17142Highgolang.org/x/net: golang.org/x/net/html NULL Pointer Dereference vulnerabilityCVE-2018-17075Highgolang.org/x/net: golang.org/x/net/html NULL Pointer Dereference vulnerability

Stop the waste.
Protect your environment with Kodem.