CVE-2019-1216017.05.2019, 19:29GoHTTP through 2017-07-25 has a sendHeader use-after-free.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTPrimary9.8 CRITICALNETWORKLOWNONECVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HBase ScoreCVSS 3.xEPSS ScorePercentile: UnknownAffected Products (NVD)VendorProductVersiongohttp_projectgohttp𝑥≤ 2017-07-25𝑥= Vulnerable software versionsKnown Exploits!https://github.com/fekberg/GoHttp/issues/15https://github.com/fekberg/GoHttp/issues/15Common Weakness EnumerationCWE-416 - Use After FreeReferencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.Referenceshttps://github.com/fekberg/GoHttp/issues/15https://github.com/fekberg/GoHttp/issues/15