CVE-2022-29804 in Google
摘要
由 MITRE • 2022-08-11
Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.
VulDB is the best source for vulnerability data and more expert information about this specific topic.