{"id":"GO-2023-2077","summary":"Authentication bypass in github.com/sagernet/sing","details":"Authentication bypass in github.com/sagernet/sing","aliases":["CVE-2023-43644","GHSA-r5hm-mp3j-285g"],"modified":"2026-03-17T04:50:06.664857Z","published":"2023-10-02T18:39:20Z","database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2023-2077"},"references":[{"type":"ADVISORY","url":"https://github.com/SagerNet/sing-box/security/advisories/GHSA-r5hm-mp3j-285g"},{"type":"FIX","url":"https://github.com/SagerNet/sing/commit/5b05b5c147d9650e8accb4441e216c72a61f4859"}],"affected":[{"package":{"name":"github.com/sagernet/sing","ecosystem":"Go","purl":"pkg:golang/github.com/sagernet/sing"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.2.12-0.20230925092853-5b05b5c147d9"}]}],"ecosystem_specific":{"imports":[{"path":"github.com/sagernet/sing/protocol/socks","symbols":["HandleConnection","HandleConnection0"]}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2023-2077.json"}}],"schema_version":"1.7.5"}