SYM_GO_0006 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Interpretation Conflict
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-436: Interpretation Conflict |
| Confidence Level | Low |
| Impact Level | Low |
| Likelihood Level | Low |
Description
Directly modifying fields of a shared 'url.URL' struct in Go can unintentionally alter the URL for other parts of the code that use the same reference. This can lead to unexpected or incorrect URL values being used elsewhere in your application.
Impact
If a shared URL struct is accidentally mutated, it may result in requests being sent to the wrong endpoints, leaking sensitive data, or causing logic errors. In security-sensitive applications, this could enable attackers to redirect traffic, bypass access controls, or manipulate application behavior.