Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2024-21527 — CVE-2024-21527 in github.com/gotenberg/gotenberg · VulnScope

CVE-2024-21527

CVE-2024-21527 in github.com/gotenberg/gotenberg

EPSS 0.12%

Description

CVE-2024-21527 in github.com/gotenberg/gotenberg

How to fix CVE-2024-21527

To remediate CVE-2024-21527, upgrade the affected package to a fixed version below.

Go/github.com/gotenberg/gotenberg/v7—no fix listed
Go/github.com/gotenberg/gotenberg/v8—upgrade to 8.1.0 or later

Is CVE-2024-21527 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0
from 0, < 8.1.0

References (7)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-21527
PATCHgithub.com/gotenberg/gotenberg/commit/ad152e62e5124b673099a9103eb6e7f933771794
WEBgist.github.com/filipochnik/bc88a3d1cc17c07cec391ee98e1e6356
WEBgithub.com/gotenberg/gotenberg/releases/tag/v8.1.0

Metadata

Published: 7/22/2024
Modified: 3/3/2026

Also known as:

GO-2024-2996goadvisory

WEB

security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGGOTENBERG-7537081

WEBsecurity.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGMODULESCHROMIUM-7537082

WEBsecurity.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGMODULESWEBHOOK-7537083

Go/github.com/gotenberg/gotenberg/v7

Go/github.com/gotenberg/gotenberg/v8