Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:28 a.m.8 views

CVE-2019-25004

An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness...

9.8CVSS6.8AI score0.00575EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2021/08/25 8:46 p.m.4 views

arrow (>=0.14.0 <=0.15.1), blockbuffers (=0.1.0) +12 more potentially affected by CVE-2019-25004 via flatbuffers (>=0.4.0 <=0.5.0)

flatbuffers CARGO version =0.4.0, =0.14.0, =0.1.8, =0.1.0, =0.0.5, =0.1.0, =0.1.0, =0.2.0, =3.0.0, =1.0.0, =1.1.2, =1.2.0, =1.3.2 Source cves: CVE-2019-25004 Source advisory: OSV:GHSA-GX73-2498-R55C...

9.8CVSS7.1AI score0.00575EPSS
Exploits1
CVE
CVE
added 2020/12/31 8:32 a.m.62 views

CVE-2019-25004

CVE-2019-25004 affects the Rust crate flatbuffers prior to 0.6.1. The root cause is an implementation of impl Follow for bool that allows arbitrary bytes to be reinterpreted as a bool, defeating soundness. This could enable a remote attacker to bypass security restrictions by sending specially cr...

9.8CVSS9.3AI score0.00575EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2019/10/20 12:0 p.m.5 views

arrow (>=0.14.0 <=0.15.1), blockbuffers (=0.1.0) +12 more potentially affected by CVE-2019-25004 via flatbuffers (>=0.4.0 <=0.5.0)

flatbuffers CARGO version =0.4.0, =0.14.0, =0.1.8, =0.1.0, =0.0.5, =0.1.0, =0.1.0, =0.2.0, =3.0.0, =1.0.0, =1.1.2, =1.2.0, =1.3.2 Source cves: CVE-2019-25004 Source advisory: OSV:RUSTSEC-2019-0028...

9.8CVSS7.1AI score0.00575EPSS
Exploits1
Rows per page
Query Builder