Lucene search
K

156 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:38 p.m.14 views

CVE-2020-35862

An issue was discovered in the bitvec crate before 0.17.4 for Rust. BitVec to BitBox conversion leads to a use-after-free or double free...

9.8CVSS6.9AI score0.01629EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.8 views

CVE-2020-25795

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, insertfrom can have a memory-safety issue upon a panic...

7.5CVSS6.8AI score0.01719EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.11 views

CVE-2020-35872

An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the reprRust type...

9.8CVSS7AI score0.01715EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:34 p.m.26 views

CVE-2020-35905

An issue was discovered in the futures-util crate before 0.3.7 for Rust. MutexGuard::map can cause a data race for certain closure situations in safe code...

4.7CVSS6.8AI score0.00261EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:34 p.m.11 views

CVE-2020-36469

An issue was discovered in the appendix crate through 2020-11-15 for Rust. For the generic K and V type parameters, Send and Sync are implemented unconditionally...

5.9CVSS6.9AI score0.00978EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.6 views

CVE-2020-36219

An issue was discovered in the atomic-option crate through 2020-10-31 for Rust. Because AtomicOption implements Sync unconditionally, a data race can occur...

5.9CVSS6.8AI score0.01107EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.9 views

CVE-2020-36214

An issue was discovered in the multiqueue2 crate before 0.1.7 for Rust. Because a non-Send type can be sent to a different thread, a data race can occur...

5.9CVSS6.8AI score0.01107EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:32 p.m.20 views

CVE-2020-35925

An issue was discovered in the magnetic crate before 2.0.1 for Rust. MPMCConsumer and MPMCProducer allow cross-thread sending of a non-Send type...

5.5CVSS6.8AI score0.00377EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:32 p.m.10 views

CVE-2020-35867

An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via createmodule...

9.8CVSS7AI score0.01715EPSS
Exploits0
NVD
NVD
added 2025/05/12 3:16 p.m.16 views

CVE-2025-46718

sudo-rs is a memory safe implementation of sudo and su written in Rust. Prior to version 0.2.6, users with limited sudo privileges e.g. execution of a single command can list sudo privileges of other users using the -U flag. This vulnerability allows users with limited sudo privileges to enumerat...

3.3CVSS0.00222EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.7 views

rust bug fix and enhancement update

An update is available for rust. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rust is a systems programming language that runs blazingly fast, prevents...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2022-36113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, makin...

8.1CVSS8.8AI score0.01004EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/02/03 5:57 p.m.6 views

CVE-2025-24898

rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions ssl::selectnextproto can return a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. In situations where the sever buffer's lifetime is shorter than th...

6.3CVSS5.6AI score0.0065EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/09/04 3:29 p.m.24 views

CVE-2024-43402 Rust OS Command Injection/Argument Injection vulnerability

Rust is a programming language. The fix for CVE-2024-24576, where std::process::Command incorrectly escaped arguments when invoking batch files on Windows, was incomplete. Prior to Rust version 1.81.0, it was possible to bypass the fix when the batch file name had trailing whitespace or periods...

8.1CVSS7.4AI score0.00744EPSS
Exploits10References3
Redos
Redos
added 2024/08/05 12:0 a.m.22 views

ROS-20240805-02

A vulnerability in the implementation of the application program interface of the Rust programming language interpreter for Windows operating systems is related to the introduction or modification of arguments. Windows operating systems is related to the introduction or modification of arguments...

10CVSS8.2AI score0.20342EPSS
Exploits10
Redos
Redos
added 2024/07/29 12:0 a.m.27 views

ROS-20240729-11

A vulnerability in the Cargo package manager of the Rust programming language involves the injection of arbitrary HTML after including it in a report generated by Cargo. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code...

6.1CVSS7.9AI score0.00846EPSS
Exploits0
Redos
Redos
added 2024/07/29 12:0 a.m.24 views

ROS-20240729-09

Vulnerability in Cargo package manager of Rust programming language is related to ignoring umask when extracting archives created on UNIX-like systems. when retrieving archives created on UNIX-like systems. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute...

7.9CVSS7.6AI score0.00763EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.24 views

Fedora 40 : rust (2024-ab4573fb3b)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-ab4573fb3b advisory. Security fix for CVE-2024-24576 Windows command injection Tenable has extracted the preceding description block directly from the Fedora security...

10CVSS8.1AI score0.20342EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2024/04/12 12:0 a.m.29 views

Fedora 39 : rust (2024-6bc17db348)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-6bc17db348 advisory. Security fix for CVE-2024-24576 Windows command injection Tenable has extracted the preceding description block directly from the Fedora security...

10CVSS8.1AI score0.20342EPSS
Exploits10References2
UbuntuCve
UbuntuCve
added 2024/04/09 6:15 p.m.37 views

CVE-2024-24576

Rust is a programming language. The Rust Security Response WG was notified that the Rust standard library prior to version 1.77.2 did not properly escape arguments when invoking batch files with the bat and cmd extensions on Windows using the Command. An attacker able to control the arguments...

10CVSS7.4AI score0.20342EPSS
Exploits10References9
Rows per page
Query Builder