github.com/IceWhaleTech/CasaOS-UserService (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/IceWhaleTech/CasaOS-UserService, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2024-24767 — CVSS 9.1 (critical): CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, CasaOS…
CVE-2024-24765 — CVSS 7.5 (high): CasaOS-UserService provides user management functionalities to CasaOS. Prior to version 0.4.7, path filtering of the URL for user avatar…
CVE-2024-24766 — CVSS 6.2 (medium): CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS…
CVE-2024-28232 — CVSS 6.2 (medium): Go package IceWhaleTech/CasaOS-UserService provides user management functionalities to CasaOS. The Casa OS Login page has disclosed the…