CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

217 matches found

Github Security Blog•added 2021/07/12 5:3 p.m.•23 views

SMTP command injection in lettre

Impact Affected versions of lettre allowed SMTP command injection through an attacker's controlled message body. The module for escaping lines starting with a period wouldn't catch a period that was placed after a double CRLF sequence, allowing the attacker to end the current message and write...

9.8CVSS9.3AI score0.01494EPSS

Exploits1References5Affected Software1

OSV•added 2021/07/12 5:3 p.m.•12 views

GHSA-QC36-Q22Q-CJW3 SMTP command injection in lettre

9.8CVSS9.7AI score0.01494EPSS

Exploits1References5

vulnersOsv•added 2021/05/21 12:0 p.m.•6 views

aquamarine-vm (>=0.1.0 <=0.5.2), ashpaper-plus (>=0.5.0 <=0.5.1) +140 more potentially affected by CVE-2021-32629 via cranelift-codegen (>=0.14.0 <=0.72.0)

cranelift-codegen CARGO version =0.14.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.2.9, =0.1.0, =0.2.0, =0.1.0, =0.1.0, =0.26.1, =0.13.2, =0.8.0, =0.14.0, =0.14.0, =0.66.0 and more Source cves: CVE-2021-32629 Source advisory: OSV:RUSTSEC-2021-0067...

8.8CVSS7.2AI score0.00455EPSS

Exploits1

vulnersOsv•added 2021/05/06 12:0 p.m.•2 views

actix-broker (>=0.1.3 <=0.1.7), actix-diesel (>=0.1.0 <=0.3.0) +894 more potentially affected by unknown CVE via cpuid-bool (>=0.1.2 <=0.2.0)

cpuid-bool CARGO version =0.1.2, =0.1.3, =0.1.0, =0.3.0, =0.3.0, =0.5.1, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0064...

5.5AI score

Exploits0

OSV•added 2021/04/28 2:32 p.m.•9 views

SUSE-SU-2021:1408-1 Security update for librsvg

This update for librsvg fixes the following issues: - librsvg was updated to 2.46.5: Update dependent crates that had security vulnerabilities: smallvec to 0.6.14 - RUSTSEC-2018-0003 - CVE-2021-25900 bsc1183403...

9.8CVSS9.5AI score0.01653EPSS

Exploits1References3

Tenable Nessus•added 2021/04/27 12:0 a.m.•23 views

SUSE SLED15 / SLES15 Security Update : librsvg (SUSE-SU-2021:1310-1)

This update for librsvg fixes the following issues : librsvg was updated to 2.42.9 : - Update dependent crates that had security vulnerabilities: smallvec to 0.6.14 - RUSTSEC-2018-0003 - CVE-2018-20991 bsc1148293 -the bundled version of the cssparser crate now builds correctly on Rust 1.43...

9.8CVSS8.2AI score0.01798EPSS

Exploits0References5

vulnersOsv•added 2021/02/03 12:0 p.m.•1 views

optra (>=0.1.0 <=0.2.1) potentially affected by CVE-2021-45694 via rdiff (=0.1.2)

rdiff CARGO version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on rdiff and may be impacted: - optra =0.1.0, =0.2.1 Source cves: CVE-2021-45694 Source advisory: OSV:RUSTSEC-2021-0094...

7.5CVSS7.1AI score0.01059EPSS

Exploits0

vulnersOsv•added 2021/01/03 12:0 p.m.•1 views

binjs_es6 (=0.2.1) potentially affected by CVE-2021-45683 via binjs_io (=0.2.1)

binjsio CARGO version =0.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on binjsio and may be impacted: - binjses6 =0.2.1 Source cves: CVE-2021-45683 Source advisory: OSV:RUSTSEC-2021-0085...

9.8CVSS7.2AI score0.01191EPSS

Exploits0

vulnersOsv•added 2020/12/31 12:0 p.m.•2 views

hina (>=0.0.1 <=0.1.3) potentially affected by CVE-2020-36511 via bite (=0.0.5)

bite CARGO version =0.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on bite and may be impacted: - hina =0.0.1, =0.1.3 Source cves: CVE-2020-36511 Source advisory: OSV:RUSTSEC-2020-0153...

7.5CVSS7.1AI score0.01059EPSS

Exploits0

vulnersOsv•added 2020/12/20 12:0 p.m.•3 views

a_r_c_h_e_r_y (>=0.4.1 <=0.4.3), abci-storage (=0.0.3) +1686 more potentially affected by unknown CVE via difference (>=0.4.1 <=2.0.0)

difference CARGO version =0.4.1, =0.4.1, =0.1.1, =0.1.0, =0.1.0, =4.1.0, =0.6.0, =0.1.0, =0.1.25, =2.0.0, =2.1.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0095...

5.5AI score

Exploits0

vulnersOsv•added 2020/12/08 12:0 p.m.•3 views

async-coap-tokio (=0.1.0) potentially affected by CVE-2020-36444 via async-coap (=0.1.0)

async-coap CARGO version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on async-coap and may be impacted: - async-coap-tokio =0.1.0 Source cves: CVE-2020-36444 Source advisory: OSV:RUSTSEC-2020-0124...

8.1CVSS7.2AI score0.00766EPSS

Exploits0

vulnersOsv•added 2020/12/02 12:0 p.m.•2 views

AitSar (=0.1.1), Boa (>=0.9.0 <=0.10.0) +1427 more potentially affected by unknown CVE via memmap (>=0.1.0 <=0.7.0)

memmap CARGO version =0.1.0, =0.9.0, =0.1.0, =0.1.23, =0.0.1, =0.1.1, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.0.3 - aflakimgui-glium-renderer =0.18.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0077...

5.5AI score

Exploits0

vulnersOsv•added 2020/11/16 12:0 p.m.•2 views

actyx_sdk (=0.3.0), actyxos_sdk (>=0.5.1 <=0.6.0) +40 more potentially affected by CVE-2020-36471 via generator (=0.6.25)

generator CARGO version =0.6.25 is affected by a known vulnerability. The following packages have a transitive dependency on generator and may be impacted: - actyxsdk =0.3.0 - actyxossdk =0.5.1, =0.1.0, =0.2.0, =0.1.0, =0.1.0-alpha.1, =0.1.0, =0.0.1, =0.2.11, =0.7.0, =0.5.0, =0.9.2, =0.8.2, =0.1....

5.9CVSS6.2AI score0.01094EPSS

Exploits1

vulnersOsv•added 2020/11/10 12:0 p.m.•6 views

lavellang (=0.3.0), querylib (>=0.2.0 <=0.5.0) potentially affected by CVE-2020-36458 via lexer (=0.1.18)

lexer CARGO version =0.1.18 is affected by a known vulnerability. The following packages have a transitive dependency on lexer and may be impacted: - lavellang =0.3.0 - querylib =0.2.0, =0.5.0 Source cves: CVE-2020-36458 Source advisory: OSV:RUSTSEC-2020-0138...

8.1CVSS7.2AI score0.00833EPSS

Exploits1

vulnersOsv•added 2020/11/02 12:0 p.m.•1 views

maidsafe_client (>=0.1.0 <=0.1.2), maidsafe_types (>=0.0.9 <=0.2.3) +8 more potentially affected by unknown CVE via routing (>=0.0.9 <=0.4.1)

routing CARGO version =0.0.9, =0.1.0, =0.0.9, =0.0.3, =0.1.4, =0.1.0, =0.1.0, =0.1.5, =0.2.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0076...

5.8AI score

Exploits0

vulnersOsv•added 2020/11/02 12:0 p.m.•5 views

aoaddons (>=0.1.1 <=0.2.0), bls_signature_aggregator (=0.1.0) +2 more potentially affected by unknown CVE via fake_clock (>=0.1.0 <=0.3.1)

fakeclock CARGO version =0.1.0, =0.1.1, =0.6.0, =0.1.0, =1.3.1 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0065...

5.8AI score

Exploits0

vulnersOsv•added 2020/10/31 12:0 p.m.•2 views

accel-mma84 (>=0.2.0 <=0.2.0-beta.3), bus (>=0.2.0 <=2.2.3) +14 more potentially affected by CVE-2020-36219 via atomic-option (=0.1.2)

atomic-option CARGO version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on atomic-option and may be impacted: - accel-mma84 =0.2.0, =0.2.0, =0.0.1, =0.7.0, =0.2.5, =1.0.0, =0.3.0, =0.1.0, =0.3.0 and more Source cves: CVE-2020-36219 Source...

5.9CVSS6.2AI score0.01107EPSS

Exploits1

OSV•added 2020/10/21 12:0 p.m.•7 views

RUSTSEC-2020-0055 Please see RUSTSEC-2018-0020

This vulnerability was misfiled under the wrong year and has been withdrawn...

7.1AI score

Exploits0References3

RustSec•added 2020/10/21 12:0 p.m.•13 views

Please see RUSTSEC-2018-0020

This vulnerability was misfiled under the wrong year and has been withdrawn...

1.7AI score

Exploits0Affected Software1

vulnersOsv•added 2020/10/15 12:0 p.m.•1 views

aesni (>=0.7.0 <=0.9.0), aries-askar (=0.1.2) +28 more potentially affected by unknown CVE via stream-cipher (>=0.4.1 <=0.7.1)

stream-cipher CARGO version =0.4.1, =0.7.0, =0.1.1, =0.1.1, =0.1.0, =0.4.0, =0.5.0, =0.2.0, =0.1.1, =0.1.0, =0.1.0, =0.1.0-pre.1, =0.1.0, =0.3.1, =0.3.9 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0058...

5.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by