CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

RustSec•added 2026/06/04 12:0 p.m.•10 views

`pqcrypto-mlkem` is unmaintained: upstream PQClean project being archived

This crate provides Rust bindings to ML-KEM FIPS 203 via C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches or bug fixes will be applied to the upstream implementations. As a result, this crat...

5.8AI score

Exploits0

RustSec•added 2026/06/04 12:0 p.m.•15 views

`pqcrypto-sphincsplus` is unmaintained: upstream PQClean project being archived

This crate provides Rust bindings to SPHINCS+/SLH-DSA FIPS 205 via C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches or bug fixes will be applied to the upstream implementations. As a result,...

5.8AI score

Exploits0

RustSec•added 2026/06/04 12:0 p.m.•11 views

`pqcrypto-falcon` is unmaintained: upstream PQClean project being archived

This crate provides Rust bindings to the Falcon FN-DSA signature scheme via C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches or bug fixes will be applied to the upstream implementations. As ...

5.8AI score

Exploits0

RustSec•added 2026/06/04 12:0 p.m.•13 views

`pqcrypto-mldsa` is unmaintained: upstream PQClean project being archived

This crate provides Rust bindings to ML-DSA FIPS 204 via C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches or bug fixes will be applied to the upstream implementations. As a result, this crat...

5.8AI score

Exploits0

OSV•added 2026/06/04 12:0 p.m.•7 views

RUSTSEC-2026-0165 `pqcrypto-falcon` is unmaintained: upstream PQClean project being archived

5.8AI score

Exploits0References3

OSV•added 2026/06/04 12:0 p.m.•16 views

RUSTSEC-2026-0161 `pqcrypto-mlkem` is unmaintained: upstream PQClean project being archived

5.8AI score

Exploits0References3

OSV•added 2026/06/04 12:0 p.m.•7 views

RUSTSEC-2026-0164 `pqcrypto` is unmaintained: upstream PQClean project being archived

The pqcrypto crate and the entire pqcrypto- ecosystem wrap C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches, algorithm updates, or bug fixes will be applied to the upstream implementations. ...

5.8AI score

Exploits0References3

OSV•added 2026/06/04 12:0 p.m.•10 views

RUSTSEC-2026-0166 `pqcrypto-mldsa` is unmaintained: upstream PQClean project being archived

5.8AI score

Exploits0References3

OSV•added 2026/06/04 12:0 p.m.•8 views

RUSTSEC-2026-0160 `pqcrypto-sphincsplus` is unmaintained: upstream PQClean project being archived

5.8AI score

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•7 views

PT-2026-49125

5.3AI score

Exploits0References4

Positive Technologies•added 2026/06/04 12:0 a.m.•7 views

PT-2026-49122

5.3AI score

Exploits0References4

Positive Technologies•added 2026/06/04 12:0 a.m.•6 views

PT-2026-49126

5.3AI score

Exploits0References4

Positive Technologies•added 2026/06/04 12:0 a.m.•7 views

PT-2026-49121

5.3AI score

Exploits0References4

Fedora•added 2025/10/14 10:22 p.m.•6 views

[SECURITY] Fedora 43 Update: rust-protobuf-parse-3.7.2-1.fc43

Parse .proto files. Files are parsed into a protobuf::descriptor::FileDescriptorSet object using either: pure rust parser no dependencies protoc binary more reliable and compatible with Google's implementation...

5.9CVSS7.1AI score0.0038EPSS

Exploits0

Github Security Blog•added 2025/09/15 1:58 p.m.•9 views

serde_yml crate is unsound and unmaintained

Using serdeyml::ser::Serializer.emitter can cause a segmentation fault, which is unsound. The GitHub project for serdeyml was archived after unsoundness issues were raised. If you rely on this crate, it is highly recommended switching to a maintained alternative. Recommended alternatives -...

7AI score

Exploits0References3Affected Software1

OSV•added 2025/09/11 12:0 p.m.•8 views

RUSTSEC-2025-0068 serde_yml crate is unsound and unmaintained

7AI score

Exploits0References3

Fedora•added 2024/10/19 1:54 a.m.•6 views

[SECURITY] Fedora 40 Update: rust-hyper-rustls-0.27.3-1.fc40

Rustls+hyper integration for pure rust HTTPS...

7.4AI score

Exploits0

OpenVAS•added 2024/02/14 12:0 a.m.•14 views

Fedora: Security Advisory for rust-vhost (FEDORA-2024-f2305d485f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.00652EPSS

Exploits0References2

OpenVAS•added 2024/02/10 12:0 a.m.•7 views

Fedora: Security Advisory for rust-vhost (FEDORA-2024-04877592b7)

9.8CVSS7.8AI score0.00652EPSS

Exploits0References2

Debian CVE•added 2023/11/28 8:57 p.m.•18 views

CVE-2023-49092

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is...

5.9CVSS5.3AI score0.00605EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by