Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-04510
HistoryDec 28, 2021 - 12:00 a.m.

Mozilla Rust messagepack-rs crate file reading vulnerability (CNVD-2022-04510)

2021-12-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
mozilla foundation
rust
messagepack-rs crate
security vulnerability
uninitialized memory location
file reading

EPSS

0.002

Percentile

62.1%

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. rust messagepack-rs crate has a security vulnerability in versions prior to 2021-01-26, which can be exploited by attackers to deserialize_binary to read data from an uninitialized memory location.

EPSS

0.002

Percentile

62.1%