Lucene search

CVE-2020-35858

🗓️ 31 Dec 2020 10:14:15Reported by mitreType

Issue in prost crate before 0.6.1 for Rust. Stack consumption via crafted message, leading to denial of service or remote code execution

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Prion	Remote code execution	31 Dec 202010:15	–	prion
OSV	GHSA-GV73-9MWV-FWGQ Out of bounds write in prost	25 Aug 202120:46	–	osv
OSV	RUSTSEC-2020-0002 Parsing a specially crafted message can result in a stack overflow	16 Jan 202012:00	–	osv
OSV	CVE-2020-35858	31 Dec 202010:15	–	osv
Github Security Blog	Out of bounds write in prost	25 Aug 202120:46	–	github
RedhatCVE	CVE-2020-35858	22 May 202516:38	–	redhatcve
Cvelist	CVE-2020-35858	31 Dec 202008:30	–	cvelist
RustSec	Parsing a specially crafted message can result in a stack overflow	16 Jan 202012:00	–	rustsec
CNVD	Unspecified Vulnerability in Mozilla Rust (CNVD-2021-30438)	6 Jan 202100:00	–	cnvd
NVD	CVE-2020-35858	31 Dec 202010:15	–	nvd

Nvd

Node

prost_project prostRange<0.6.1rust

Source	Link
rustsec	www.rustsec.org/advisories/RUSTSEC-2020-0002.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Dec 2020 10:15Current

9.7High risk

Vulners AI Score9.7

CVSS27.5

CVSS39.8

EPSS0.02484

CWE-787