Lucene search
China National Vulnerability DatabaseCNVD-2022-04019HistoryDec 28, 2021 - 12:00 a.m.
Rust raw-cpuid crate has an unspecified vulnerability
2021-12-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
rust
raw-cpuid
library
x86
cpuid
instructions
memory corruption
security vulnerability
exploit
attackers
rust raw-cpuid 9.1.1
EPSS
0.002
Percentile
65.2%
Rust raw-cpuid crate is a library for parsing x86 CPUID instructions, written in rust, with no external dependencies. The implementation is very similar to the Intel CPUID manual description. The library only depends on libcore. versions prior to Rust raw-cpuid crate 9.1.1 have security vulnerabilities that can be exploited by attackers to cause memory corruption.
Related
cve
cve
CVE-2021-45687
2021-12-27 00:15:09
osv
osv
Optional `Deserialize` implementations lacking validation
2021-01-20 12:00:00
Optional `Deserialize` implementations lacking validation
2022-06-17 00:16:24
Deserialization of Untrusted Data in rust-cpuid
2022-01-06 22:13:12
nvd
nvd
CVE-2021-45687
2021-12-27 00:15:09
rustsec
rustsec
Optional `Deserialize` implementations lacking validation
2021-01-20 12:00:00
prion
prion
Memory corruption
2021-12-27 00:15:00
cvelist
cvelist
CVE-2021-45687
2021-12-26 21:51:59
github
github
Deserialization of Untrusted Data in rust-cpuid
2022-01-06 22:13:12