Vulnerability Database

289,598

Total vulnerabilities in the database

CVE-2023-45284

On Windows, The IsLocal function does not correctly detect reserved device names in some cases. Reserved names followed by spaces, such as "COM1 ", and reserved names "COM" and "LPT" followed by superscript 1, 2, or 3, are incorrectly reported as local. With fix, IsLocal now correctly reports these names as non-local.

  • Published: Nov 9, 2023
  • Updated: Nov 18, 2023
  • CVE: CVE-2023-45284
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

No CWE or OWASP classifications available.

Software From Fixed in
golang / go - 1.20.11
golang / go 1.21.0-0 1.21.4