CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/05/26 10:16 p.m.•5 views

CVE-2026-44983

7.3CVSS5.9AI score0.00006EPSS

Exploits0References2

CVE•added 2026/05/26 9:38 p.m.•10 views

CVE-2026-44983

Summary of CVE-2026-44983 (smallbitvec): An integer overflow in the internal capacity calculation (cap + bits_per_storage() - 1) can produce an undersized heap allocation, enabling a heap buffer overflow through safe APIs in versions 1.0.1–2.6.0 of the Rust crate smallbitvec. This can cause memor...

Vulnrichment•added 2026/05/26 9:38 p.m.•6 views

CVE-2026-44983 smallbitvec: Safe API Triggered Heap Buffer Overflow via Integer Overflow

EUVD•added 2026/05/26 9:38 p.m.•9 views

EUVD-2026-32015

Debian CVE•added 2026/05/26 9:38 p.m.•7 views

CVE-2026-44983

Github Security Blog•added 2026/05/09 12:2 a.m.•6 views

Exploits0

smallbitvec: Integer overflow in safe API leads to heap buffer overflow

Summary An integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption without requiring unsafe code from the caller. Details The issue originates from...

7.3CVSS6AI score0.00006EPSS

Exploits0References2Affected Software1

RustSec•added 2026/05/02 12:0 p.m.•6 views

Buffer overflow in `Clusterings::from_i32_column_major_order()`

The fromi32columnmajororder method can create inconsistent internal state. When labels length and nitems mismatch, nclusterings becomes labels.len / nitems truncated, but subsequent calls to label use indices that exceed the internal data bounds, causing a buffer overflow. For example,...

6AI score

Exploits0Affected Software1

OSV•added 2026/05/02 12:0 p.m.•2 views

RUSTSEC-2026-0131 Double-free in `Chomp::inner()`

Chomp::inner uses std::ptr::readunaligned to move out the value from a raw pointer. If the original value is an owned type e.g. Box, calling inner moves out the ownership, but the original variable will still be dropped at the end of its scope. This causes the same heap memory to be freed twice,...

5.8AI score

OSV•added 2026/05/02 12:0 p.m.•2 views

RUSTSEC-2026-0139 Null-pointer dereference and double-free via safe APIs

Two soundness violations exist in the Rust bindings for MetaCall: Null-pointer dereference: MetaCallFuture::newraw accepts a raw pointer without validation. The Debug impl calls Box::fromrawself.data on it. Passing a null pointer causes the Debug impl to construct a NonNull from null, producing...

5.8AI score

Github Security Blog•added 2026/04/04 5:45 a.m.•4 views

scaly: Multiple soundness issues in Rust safe APIs

Affected versions contain multiple safe APIs that can trigger undefined behavior: - Array::index can perform an out-of-bounds read. - String::getlength can perform an out-of-bounds read. - String::appendcharacter can perform an invalid write. - String::tocstring can perform an out-of-bounds write...

5.9AI score

Exploits0References3Affected Software1

RustSec•added 2026/01/19 12:0 p.m.•2 views

Multiple soundness issues in `scaly` safe APIs

5.9AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-29459

Malicious code in bioql PyPI...

6.6AI score

Positive Technologies•added 2025/08/14 12:0 a.m.•2 views

PT-2025-34571 · Crates.Io · Scratchpad

The get and set methods of the public trait scratchpad::Tracking interact with unsafe code regions in the crate, and they influence the computation of addresses returned as raw pointers. However, the trait itself is not marked as unsafe, meaning users may provide custom implementations under the...

7.9AI score

Exploits0References4

OSV•added 2025/07/16 2:18 p.m.•0 views

GHSA-7MCQ-F592-PF7V Slice Ring Buffer and Slice Deque contains four unique double-free vulnerabilities triggered through safe APIs

The crate slice-ring-buffer was developed as a fork of slice-deque to continue maintenance and provide security patches, since the latter has been officially unmaintained RUSTSEC-2020-0158. While slice-ring-buffer has addressed some previously reported memory safety issues inherited from its fork...

9.3CVSS5.8AI score

OSV•added 2025/06/16 12:0 p.m.•2 views

RUSTSEC-2025-0044 Four unique double-free vulnerabilities triggered via safe APIs

7.9AI score