Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/22 4:38 p.m.6 views

CVE-2020-35876

An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race...

9.8CVSS6.6AI score0.01541EPSS
Exploits0
vulnersosv
vulnersosv
added 2021/08/25 8:46 p.m.7 views

haneru (=0.0.0), marble (=0.0.0) +6 more potentially affected by CVE-2020-35876 via rio (=0.9.4)

rio CARGO version =0.9.4 is affected by a known vulnerability. The following packages have a transitive dependency on rio and may be impacted: - haneru =0.0.0 - marble =0.0.0 - mfio-rt =0.1.0 - pearl =0.4.0, =0.31.0, =0.25.1, =0.34.7-p1, =0.34.7-patched Source cves: CVE-2020-35876 Source advisory...

9.8CVSS7.2AI score0.01541EPSS
Exploits0
osv
osv
added 2020/12/31 10:15 a.m.5 views

CVE-2020-35876

An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race...

9.8CVSS7.3AI score0.01541EPSS
Exploits0References1
debiancve
debiancve
added 2020/12/31 8:27 a.m.40 views

CVE-2020-35876

Removed by vendor...

9.8CVSS9.1AI score0.01541EPSS
Exploits0
cve
cve
added 2020/12/31 8:27 a.m.52 views

CVE-2020-35876

The CVE-2020-35876 entry relates to the rio crate (Rust) where leaking a rio::Completion can prevent its drop code from running, enabling access to or dropping of the underlying I/O buffer. This can lead to use-after-free, data races, or leaking secrets. The primary technical details are document...

9.8CVSS9.2AI score0.01541EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder