{"id":"GO-2024-3331","summary":"Beego has Collision Hazards of MD5 in Cache Key Filenames in github.com/beego/beego","details":"Beego has Collision Hazards of MD5 in Cache Key Filenames in github.com/beego/beego","aliases":["CVE-2024-55885","GHSA-9j3m-fr7q-jxfw"],"modified":"2026-02-04T02:21:25.221803Z","published":"2024-12-18T16:35:36Z","related":["CGA-h8jv-xf4q-pg52"],"database_specific":{"url":"https://pkg.go.dev/vuln/GO-2024-3331","review_status":"REVIEWED"},"references":[{"type":"ADVISORY","url":"https://github.com/beego/beego/security/advisories/GHSA-9j3m-fr7q-jxfw"},{"type":"FIX","url":"https://github.com/beego/beego/commit/e7fa4835f71f47ab1d13afd638cebf661800d5a4"}],"affected":[{"package":{"name":"github.com/beego/beego","ecosystem":"Go","purl":"pkg:golang/github.com/beego/beego"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2024-3331.json"}},{"package":{"name":"github.com/beego/beego/v2","ecosystem":"Go","purl":"pkg:golang/github.com/beego/beego/v2"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"2.3.4"}]}],"ecosystem_specific":{"imports":[{"symbols":["FileCache.Decr","FileCache.Delete","FileCache.Get","FileCache.GetMulti","FileCache.Incr","FileCache.IsExist","FileCache.Put","FileCache.getCacheFileName"],"path":"github.com/beego/beego/v2/client/cache"}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2024-3331.json"}}],"schema_version":"1.7.3"}