Lucene search

CVE-2021-28030

🗓️ 05 Mar 2021 09:13:15Reported by mitreType

An issue in truetype crate before 0.30.1 for Rust allows reading uninitialized memory via user-provided Read operatio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
OSV	Use of Uninitialized Resource in truetype	25 Aug 202120:51	–	osv
OSV	Tape::take_bytes exposes uninitialized memory to a user-provided Read	17 Feb 202112:00	–	osv
RustSec	Tape::take_bytes exposes uninitialized memory to a user-provided Read	17 Feb 202112:00	–	rustsec
CNVD	Unspecified Vulnerability in Rust (CNVD-2021-17264)	11 Mar 202100:00	–	cnvd
NVD	CVE-2021-28030	5 Mar 202109:15	–	nvd
Cvelist	CVE-2021-28030	5 Mar 202108:40	–	cvelist
Prion	Design/Logic Flaw	5 Mar 202109:15	–	prion
Github Security Blog	Use of Uninitialized Resource in truetype	25 Aug 202120:51	–	github

Nvd

Node

truetype_project truetypeRange<0.30.1rust

Source	Link
rustsec	www.rustsec.org/advisories/RUSTSEC-2021-0029.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Mar 2021 09:15Current

7.3High risk

Vulners AI Score7.3

CVSS25

CVSS37.5

EPSS0.00285

CWE-908