Vulnerabilities

Report: CVE-2026-4660 - Go-getter may allow to arbitrary filesystem reads through git operations

2026-04-09 0 views admin

CVE ID :CVE-2026-4660 Published : April 9, 2026, 2:16 p.m. | 36 minutes ago Description :HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-4660

Severity

HIGH

Published

April 9, 2026

Affected Product: HashiCorp

🏷️ Tags

reportgetterallowarbitraryfilesystemreadsthroughoperationscvecve-2026-4660

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-4660 - Go-getter may allow to arbitrary filesystem reads through git operations

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-3005 - List category posts <= 0.94.0 - authenticated (author+) stored cross-site scripti

Report: Latest: CVE-2025-45806 - RRWeb-Snapshot XSS

Report: Complete Guide to CVE-2024-1490 - Wago: Vulnerability in WBM through Open VPN

Report: Update: CVE-2025-57735 - Apache Airflow: Airflow Logout Not Invalidating JWT

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting