Google specialists have fixed a dangerous vulnerability in the Golang project (the Go programming language) this month. The flaw impacts Windows users, with its help can be executed arbitrary code remotely.

The RCE vulnerability identified as CVE-2021-3115 exists due to the default behavior of Windows PATH lookups. In particular, the flaw stems from "go get" command. This bug, according to Google, was fixed by the developers this week.

Source: anti-malware.ru