Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:38 p.m.6 views

CVE-2020-35876

An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race...

9.8CVSS6.6AI score0.01541EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 8:46 p.m.6 views

haneru (=0.0.0), marble (=0.0.0) +6 more potentially affected by CVE-2020-35876 via rio (=0.9.4)

rio CARGO version =0.9.4 is affected by a known vulnerability. The following packages have a transitive dependency on rio and may be impacted: - haneru =0.0.0 - marble =0.0.0 - mfio-rt =0.1.0 - pearl =0.4.0, =0.31.0, =0.25.1, =0.34.7-p1, =0.34.7-patched Source cves: CVE-2020-35876 Source advisory...

9.8CVSS7.2AI score0.01541EPSS
Exploits0
OSV
OSV
added 2020/12/31 10:15 a.m.4 views

CVE-2020-35876

An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race...

9.8CVSS7.3AI score0.01541EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/12/31 8:27 a.m.31 views

CVE-2020-35876

Removed by vendor...

9.8CVSS9.1AI score0.01541EPSS
Exploits0
CVE
CVE
added 2020/12/31 8:27 a.m.51 views

CVE-2020-35876

The CVE-2020-35876 entry relates to the rio crate (Rust) where leaking a rio::Completion can prevent its drop code from running, enabling access to or dropping of the underlying I/O buffer. This can lead to use-after-free, data races, or leaking secrets. The primary technical details are document...

9.8CVSS9.2AI score0.01541EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder