Use after free in actix-service

🗓️ 25 Aug 2021 20:06:49Reported by GitHub Advisory DatabaseType

Actix-service Cell vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	bespoke Cell implementation allows obtaining several mutable references to the same data	8 Jan 202012:00	–	osv
OSV	Use after free in actix-service	25 Aug 202120:49	–	osv
Cvelist	CVE-2020-35899	31 Dec 202008:22	–	cvelist
RustSec	bespoke Cell implementation allows obtaining several mutable references to the same data	8 Jan 202012:00	–	rustsec
CVE	CVE-2020-35899	31 Dec 202009:15	–	cve
NVD	CVE-2020-35899	31 Dec 202009:15	–	nvd
Prion	Code injection	31 Dec 202009:15	–	prion

Vulners

Node

actix actix-serviceRange<1.0.6

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-35899
github	www.github.com/actix/actix-net/pull/158
rustsec	www.rustsec.org/advisories/RUSTSEC-2020-0046.html
github	www.github.com/advisories/GHSA-whc7-5p35-4ww2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Aug 2021 20:49Current

5.6Medium risk

Vulners AI Score5.6

CVSS22.1

CVSS35.5

EPSS0.00054

CWE-416