Lucene search
+L

175 matches found

Cvelist
Cvelist
added 2021/08/10 10:12 p.m.39 views

CVE-2021-38512

An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling aka HRS can occur, potentially leading to credential disclosure...

7.6AI score0.0181EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.6 views

Actix-http 环境问题漏洞

Actix-http is the HTTP primitive for the Actix ecosystem. An environmental issue vulnerability exists in Actix-http that stems from the product's failure to detect HTTP HRS requests, which can be exploited by an attacker to cause a credential disclosure. The following products and versions are...

7.5CVSS7.3AI score0.0181EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2021/06/16 12:0 p.m.7 views

NeteaseCloudMusicRustApi (=0.1.1), RustMusic (=0.1.0) +313 more potentially affected by CVE-2021-38512 via actix-http (>=0.1.5 <=1.0.1)

actix-http CARGO version =0.1.5, =0.1.0, =0.8.0, =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2021-38512 Source advisory: OSV:RUSTSEC-2021-0081...

7.5CVSS7.1AI score0.0181EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/06 12:0 p.m.4 views

actix-broker (>=0.1.3 <=0.1.7), actix-diesel (>=0.1.0 <=0.3.0) +894 more potentially affected by unknown CVE via cpuid-bool (>=0.1.2 <=0.2.0)

cpuid-bool CARGO version =0.1.2, =0.1.3, =0.1.0, =0.3.0, =0.3.0, =0.5.1, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0064...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2021/04/29 12:0 p.m.2 views

actinium226-librespot (=0.4.3), actinium226-librespot-connect (=0.4.3) +939 more potentially affected by unknown CVE via aes-soft (=0.6.4)

aes-soft CARGO version =0.6.4 is affected by a known vulnerability. The following packages have a transitive dependency on aes-soft and may be impacted: - actinium226-librespot =0.4.3 - actinium226-librespot-connect =0.4.3 - actinium226-librespot-playback =0.4.3, =0.1.3, =0.1.0, =0.3.0, =0.3.0,...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2021/04/29 12:0 p.m.4 views

actinium226-librespot (=0.4.3), actinium226-librespot-connect (=0.4.3) +924 more potentially affected by unknown CVE via aesni (>=0.10.0 <=0.9.0)

aesni CARGO version =0.10.0, =0.4.3, =0.1.3, =0.1.0, =0.3.0, =0.3.0, =0.5.1, =0.0.2, =0.1.0, =0.1.0, =0.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0059...

5.5AI score
Exploits0
NVD
NVD
added 2020/12/31 9:15 a.m.27 views

CVE-2020-35901

An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream...

7.5CVSS7.5AI score0.01406EPSS
Exploits1References1
NVD
NVD
added 2020/12/31 9:15 a.m.35 views

CVE-2020-35898

An issue was discovered in the actix-utils crate before 2.0.0 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

9.1CVSS9.2AI score0.0141EPSS
Exploits1References1
NVD
NVD
added 2020/12/31 9:15 a.m.33 views

CVE-2020-35899

An issue was discovered in the actix-service crate before 1.0.6 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

5.5CVSS5.5AI score0.00374EPSS
Exploits1References1
OSV
OSV
added 2020/12/31 9:15 a.m.8 views

CVE-2020-35899

An issue was discovered in the actix-service crate before 1.0.6 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

5.5CVSS6.1AI score0.00374EPSS
Exploits1References1
OSV
OSV
added 2020/12/31 9:15 a.m.5 views

CVE-2020-35898

An issue was discovered in the actix-utils crate before 2.0.0 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

9.1CVSS7.3AI score0.0141EPSS
Exploits1References1
NVD
NVD
added 2020/12/31 9:15 a.m.23 views

CVE-2020-35902

An issue was discovered in the actix-codec crate before 0.3.0-beta.1 for Rust. There is a use-after-free in Framed...

9.8CVSS9.5AI score0.01629EPSS
Exploits1References1
OSV
OSV
added 2020/12/31 9:15 a.m.13 views

CVE-2020-35902

An issue was discovered in the actix-codec crate before 0.3.0-beta.1 for Rust. There is a use-after-free in Framed...

9.8CVSS7.2AI score
Exploits0References1
Prion
Prion
added 2020/12/31 9:15 a.m.15 views

Design/Logic Flaw

An issue was discovered in the actix-codec crate before 0.3.0-beta.1 for Rust. There is a use-after-free in Framed...

7.5CVSS9.4AI score0.01629EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/12/31 9:15 a.m.21 views

Code injection

An issue was discovered in the actix-service crate before 1.0.6 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

2.1CVSS5.4AI score0.00374EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/12/31 9:15 a.m.16 views

Design/Logic Flaw

An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream...

5CVSS7.5AI score0.01406EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/12/31 8:23 a.m.58 views

CVE-2020-35898

CVE-2020-35898 affects the actix-utils crate for Rust, prior to version 2.0.0. The root cause is a bespoke Cell implementation that does not properly track mutable references, allowing multiple mutable references to the same data. Impact: potential memory corruption or use-after-free scenarios; e...

9.1CVSS9.1AI score0.0141EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/31 8:23 a.m.37 views

CVE-2020-35898

An issue was discovered in the actix-utils crate before 2.0.0 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

9.2AI score0.0141EPSS
Exploits1References1
CVE
CVE
added 2020/12/31 8:22 a.m.64 views

CVE-2020-35899

CVE-2020-35899 concerns the actix-service crate for Rust prior to 1.0.6, where a bespoke Cell implementation may allow obtaining multiple mutable references to the same data. This root cause can enable use-after-free-like behavior and memory corruption. Several connected sources confirm the issue...

5.5CVSS5.4AI score0.00374EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/31 8:22 a.m.40 views

CVE-2020-35899

An issue was discovered in the actix-service crate before 1.0.6 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data...

5.4AI score0.00374EPSS
Exploits1References1
Rows per page
Query Builder