Vulnerability Report: GO-2026-5822
- CVE-2026-49349, GHSA-qvqc-4c52-x6qp
- Affects: github.com/regclient/regclient
- Published: Jul 07, 2026
- Unreviewed
regclient may leak authentication credentials to external blob stores in github.com/regclient/regclient
For detailed information about this vulnerability, visit https://github.com/regclient/regclient/security/advisories/GHSA-qvqc-4c52-x6qp.
Affected Modules
-
PathGo Versions
-
before v0.11.5
Aliases
References
- https://github.com/regclient/regclient/security/advisories/GHSA-qvqc-4c52-x6qp
- https://vuln.go.dev/ID/GO-2026-5822.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.