PT-2026-3647

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to perform an SQL injection attack against an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This...

PT-2026-3648

A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance ASA Software in multiple context mode could allow an authenticated, local attacker with administrative privileges in one context to copy files to or from another context, including configuration files. This...

EUVD-2021-1507

Malware in sbrugna...

EUVD-2021-1712

Malware in sbrugna...

EUVD-2021-1871

Malware in sbrugna...

EUVD-2022-0425

Malicious code in bioql PyPI...

GHSA-286M-6PG9-V42V Duplicate Advisory: Multiple issues involving quote API in shlex

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r7qv-8r2h-pg27. This link is maintained to preserve external references. Original Description The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may...

Duplicate Advisory: Multiple issues involving quote API in shlex

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r7qv-8r2h-pg27. This link is maintained to preserve external references. Original Description The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2025-24903

libsignal-service-rs is a Rust version of the libsignal-service-java library which implements the core functionality to communicate with Signal servers. Prior to commit 82d70f6720e762898f34ae76b0894b0297d9b2f8, any contact may forge a sync message, impersonating another device of the local user...

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust abomonation crate in versions prior to 2021-10-17, which could allow information leakage or ASLR bypass...

SUSE-SU-2018:3357-1 Security update for rust

This update for rust fixes the following issues: - CVE-2018-1000622: rustdoc loads plugins from world writable directory allowing for arbitrary code execution This patch consists of requiring --plugin-path to be passed whenever --plugin is passed Note that rustdoc plugins will be removed entirely...