GO-2025-3420 — Vulnetix

GO-2025-3420 PUBLISHED

Sensitive headers incorrectly sent after cross-domain redirect in net/http

Affected Products

Vendor	Product	Versions
Go	stdlib	0, 1.24.0-0, 1.23.0-0

Timeline

Jan 28, 2025 CVE Published
Feb 17, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›