Cargo did not escape feature names in `cargo build --timings` report, allowing HTML injection, affecting git, local paths, & alternative registries users
Reporter | Title | Published | Views | Family All 22 |
---|---|---|---|---|
![]() | Amazon Linux 2 : rust (ALAS-2024-2426) | 23 Jan 202400:00 | – | nessus |
![]() | Photon OS 5.0: Rust PHSA-2023-5.0-0177 | 24 Jul 202400:00 | – | nessus |
![]() | Amazon Linux 2023 : cargo, clippy, rust (ALAS2023-2024-497) | 23 Jan 202400:00 | – | nessus |
![]() | Fedora 40 : rust-cargo / rust-cargo-c / rust-cargo-credential / etc (2023-6f419dc91b) | 29 Apr 202400:00 | – | nessus |
![]() | SUSE SLED15 / SLES15 / openSUSE 15 Security Update : rust, rust1.72 (SUSE-SU-2023:3722-1) | 22 Sep 202300:00 | – | nessus |
![]() | ROS-20240729-11 | 29 Jul 202400:00 | – | redos |
![]() | CVE-2023-40030 | 24 Aug 202300:00 | – | ubuntucve |
![]() | CVE-2023-40030 | 24 Aug 202323:15 | – | alpinelinux |
![]() | openSUSE: Security Advisory for rust, rust1.72 (SUSE-SU-2023:3722-1) | 4 Mar 202400:00 | – | openvas |
![]() | Fedora: Security Advisory (FEDORA-2023-6f419dc91b) | 10 Sep 202400:00 | – | openvas |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo