Go Package Vulnerabilities

All 1,262 Go modules with known CVEs, ranked by live CVE volume — 5,123 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 701.github.com/duke-git/lancet1 CVE
  2. 702.github.com/duke-git/lancet/v21 CVE
  3. 703.github.com/dunglas/mercure1 CVE
  4. 704.github.com/ecies/go/v21 CVE
  5. 705.github.com/eclipse/paho.mqtt.golang1 CVE
  6. 706.github.com/ecnepsnai/web1 CVE
  7. 707.github.com/edgelesssys/constellation1 CVE
  8. 708.github.com/edgelesssys/constellation/v21 CVE
  9. 709.github.com/edgexfoundry/app-service-configurable1 CVE
  10. 710.github.com/edgexfoundry/device-sdk-go1 CVE
  11. 711.github.com/edgexfoundry/device-sdk-go/v21 CVE
  12. 712.github.com/elastic/cloud-on-k8s1 CVE
  13. 713.github.com/elastic/package-registry1 CVE
  14. 714.github.com/elazarl/goproxy1 CVE
  15. 715.github.com/elves/elvish1 CVE
  16. 716.github.com/emiago/sipgo1 CVE
  17. 717.github.com/emicklei/go-restful1 CVE
  18. 718.github.com/emicklei/go-restful/v21 CVE
  19. 719.github.com/emicklei/go-restful/v31 CVE
  20. 720.github.com/emmansun/gmsm1 CVE
  21. 721.github.com/evanphx/json-patch1 CVE
  22. 722.github.com/evervault/evervault-go1 CVE
  23. 723.github.com/evmos/ethermint1 CVE
  24. 724.github.com/evmos/evmos/v191 CVE
  25. 725.github.com/ewen-lbh/ffcss1 CVE
  26. 726.github.com/external-secrets/external-secrets/apis1 CVE
  27. 727.github.com/fabedge/fabedge1 CVE
  28. 728.github.com/fabiolb/fabio1 CVE
  29. 729.github.com/fatedier/frp1 CVE
  30. 730.github.com/filecoin-project/lotus1 CVE
  31. 731.github.com/firebase/firebase-tools1 CVE
  32. 732.github.com/flannel-io/flannel1 CVE
  33. 733.github.com/fluxcd/helm-controller/api1 CVE
  34. 734.github.com/fluxcd/image-automation-controller1 CVE
  35. 735.github.com/fluxcd/image-automation-controller/api1 CVE
  36. 736.github.com/fluxcd/image-reflector-controller1 CVE
  37. 737.github.com/fluxcd/image-reflector-controller/api1 CVE
  38. 738.github.com/fluxcd/kustomize-controller/api1 CVE
  39. 739.github.com/fluxcd/notification-controller/api1 CVE
  40. 740.github.com/fluxcd/source-controller/api1 CVE
  41. 741.github.com/flynn/noise1 CVE
  42. 742.github.com/free5gc/aper1 CVE
  43. 743.github.com/free5gc/bsf1 CVE
  44. 744.github.com/free5gc/nssf1 CVE
  45. 745.github.com/free5gc/openapi1 CVE
  46. 746.github.com/gagliardetto/binary1 CVE
  47. 747.github.com/gardener/external-dns-management1 CVE
  48. 748.github.com/gardener/gardenctl-v21 CVE
  49. 749.github.com/gardener/gardener-extension-provider-aws1 CVE
  50. 750.github.com/gardener/gardener-extension-provider-azure1 CVE

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →