Lucene search
K

156 matches found

CNVD
CNVD
added 2021/01/06 12:0 a.m.9 views

Rust buffer overflow vulnerability (CNVD-2021-37531)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in Rust serdecbor crate versions prior to 0.10.2, which stems from the fact that the CBOR deserializer may cause stack consumption via nested semantic tags. No detailed...

7.5CVSS6.9AI score0.0143EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.10 views

Rust buffer overflow vulnerability (CNVD-2021-37536)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in try-mutex crate for Rust versions prior to 0.3.0, which stems from TryMutex allowing cross-threaded sends of non-sending types. No details of the vulnerability are...

5.5CVSS7AI score0.00377EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.10 views

Rust Resource Management Error Vulnerability (CNVD-2021-39556)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in Rust pyo3 crate versions prior to 0.12.4, which stems from a reference counting error and post-release usage in From . No details of the vulnerability are...

5.5CVSS6.5AI score0.00388EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.8 views

Rust Competitive Conditioning Problem Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A Competition Condition Issue vulnerability exists in Rust concread crate versions prior to 0.2.6, which can be exploited by an attacker to cause data contention in ARCache by sending a type that does not...

4.7CVSS6.5AI score0.00242EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.11 views

Unspecified Vulnerability in Rust (CNVD-2021-39165)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in socket2 crate for Rust prior to version 0.3.16, which stems from its incorrect expectation of the std::net::SocketAddr memory representation. No details of the vulnerability ar...

5.5CVSS6.6AI score0.00398EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.9 views

Unspecified Vulnerability in Rust (CNVD-2021-37535)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in versions prior to Rust magnetic crate 2.0.1 that stems from MPMCConsumer and MPMCProducer allowing cross-threaded sends of non-sending types. No details of the vulnerability ar...

5.5CVSS6.6AI score0.00377EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/06 12:0 a.m.12 views

Unspecified Vulnerability in Rust (CNVD-2021-39557)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust futures-intrusive crate versions prior to 0.4.0 that stems from GenericMutexGuard allowing unsynchronized types of cross-thread data contention. No details of the...

5.5CVSS6.6AI score0.00374EPSS
Exploits1References1
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

Rust Security Vulnerabilities

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. arr crate through 2020-08-25 for Rust A security vulnerability exists that stems from uninitialized memory being deleted from the template by Array::new...

9.8CVSS5.8AI score0.01515EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/07 9:5 p.m.31 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS4.9AI score0.01819EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/08/01 11:22 p.m.27 views

CVE-2019-1010299

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5.3CVSS4.7AI score0.01516EPSS
Exploits1References2
NVD
NVD
added 2019/07/15 6:15 p.m.30 views

CVE-2019-1010299

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5.3CVSS5.2AI score0.01516EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/07/15 6:15 p.m.40 views

CVE-2019-1010299

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5.3CVSS5.9AI score0.01516EPSS
Exploits1References3
Prion
Prion
added 2019/07/15 6:15 p.m.15 views

Design/Logic Flaw

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5CVSS5.2AI score0.01516EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/07/15 5:18 p.m.48 views

CVE-2019-1010299

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5.2AI score0.01516EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/07/15 5:18 p.m.18 views

CVE-2019-1010299

The Rust Programming Language Standard Library 1.18.0 and later is affected by: CWE-200: Information Exposure. The impact is: Contents of uninitialized memory could be printed to string or to log file. The component is: Debug trait implementation for std::collections::vecdeque::Iter. The attack...

5.3CVSS4.8AI score0.01516EPSS
Exploits1
NVD
NVD
added 2019/05/13 8:29 p.m.22 views

CVE-2019-12083

The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...

8.1CVSS8.5AI score0.02216EPSS
Exploits1References7
OSV
OSV
added 2019/05/13 8:29 p.m.23 views

CVE-2019-12083

The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...

8.1CVSS7.3AI score
Exploits0References7
Prion
Prion
added 2019/05/13 8:29 p.m.21 views

Design/Logic Flaw

The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...

6.8CVSS8.3AI score0.02216EPSS
Exploits1References7Affected Software3
UbuntuCve
UbuntuCve
added 2019/05/13 8:29 p.m.34 views

CVE-2019-12083

The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...

8.1CVSS7.2AI score0.02216EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/05/13 7:6 p.m.24 views

CVE-2019-12083

The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...

8.4AI score0.02216EPSS
Exploits1References7
Rows per page
Query Builder