CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Snyk•added 2025/10/22 7:55 p.m.•1 views

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via improper redaction of byte fields in audit logs when relevant subsystems send response parameters as byte slices instead of strings. An attacker can access sensitive information, such...

5.7CVSS6.8AI score0.00047EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 4:16 p.m.•4 views

CVE-2020-25576

An issue was discovered in the randcore crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints...

9.8CVSS6.7AI score0.00544EPSS

Exploits0

Microsoft CVE•added 2024/09/11 7:0 a.m.•4 views

An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.

...

9.8CVSS7AI score0.00544EPSS

Exploits0

OSV•added 2021/08/25 8:53 p.m.•18 views

GHSA-HVQC-PC78-X9WH Soundness issue in raw-cpuid

VendorInfo::asstring, SoCVendorBrand::asstring, and ExtendedFunctionInfo::processorbrandstring construct byte slices using std::slice::fromrawparts, with data coming from reprRust structs. This is always undefined behavior. This flaw has been fixed in v9.0.0, by making the relevant structs reprC...

7.5CVSS6.2AI score0.00389EPSS

Exploits1References5