CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

Tenable Nessus•added 2024/11/14 12:0 a.m.•5 views

Fedora 41 : rust-hyper-rustls / rust-reqwest / rust-rustls-native-certs / etc (2024-347164df1c)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-347164df1c advisory. - Update the hyper-rustls crate to version 0.27.3. - Update the reqwest crate to version 0.12.8. - Update the rustls-native-certs crate to version 0.8.0 and...

6.9CVSS5.2AI score0.00597EPSS

Exploits0References2

OpenVAS•added 2024/10/21 12:0 a.m.•5 views

Fedora: Security Advisory (FEDORA-2024-bf524bf5c0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

Fedora•added 2024/10/19 1:54 a.m.•9 views

[SECURITY] Fedora 40 Update: rust-tower-http-0.6.1-1.fc40

Tower middleware and utilities for HTTP clients and servers...

7.4AI score

Exploits0

Fedora•added 2024/10/19 1:20 a.m.•12 views

[SECURITY] Fedora 39 Update: rust-tower-http-0.6.1-1.fc39

Tower middleware and utilities for HTTP clients and servers...

6.9CVSS7.4AI score0.00597EPSS

Exploits0

Tenable Nessus•added 2024/10/19 12:0 a.m.•5 views

Fedora 39 : rust-hyper-rustls / rust-reqwest / rust-rustls-native-certs / etc (2024-ff98facbc6)

The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-ff98facbc6 advisory. - Update the hyper-rustls crate to version 0.27.3. - Update the reqwest crate to version 0.12.8. - Update the rustls-native-certs crate to version 0.8.0 and...

6.9CVSS5.2AI score0.00597EPSS

Exploits0References2

Fedora•added 2024/10/15 12:19 a.m.•12 views

[SECURITY] Fedora 41 Update: rust-tower-http-0.6.1-1.fc41

Tower middleware and utilities for HTTP clients and servers...

6.9CVSS3.8AI score0.00597EPSS

Exploits0

OpenVAS•added 2024/10/14 12:0 a.m.•6 views

Fedora: Security Advisory (FEDORA-2024-b9fc60e1f0)

7.5AI score

Exploits0References7

Fedora•added 2024/10/12 1:52 a.m.•6 views

[SECURITY] Fedora 39 Update: rust-tower-http-0.5.2-6.fc39

Tower middleware and utilities for HTTP clients and servers...

7.4AI score

Exploits0

Fedora•added 2024/10/12 12:20 a.m.•8 views

[SECURITY] Fedora 41 Update: rust-tower-http-0.5.2-6.fc41

Tower middleware and utilities for HTTP clients and servers...

7.4AI score

Exploits0

OSV•added 2022/08/11 3:36 p.m.•12 views

GHSA-QRQQ-9C63-XFRG tower-http's improper validation of Windows paths could lead to directory traversal attack

towerhttp::services::fs::ServeDir didn't correctly validate Windows paths, meaning paths like /foo/bar/c:/windows/web/screen/img101.png would be allowed and respond with the contents of c:/windows/web/screen/img101.png. Thus users could potentially read files anywhere on the filesystem. This only...

7AI score

Exploits0References3

Github Security Blog•added 2022/08/11 3:36 p.m.•14 views

tower-http's improper validation of Windows paths could lead to directory traversal attack

4.4AI score

Exploits0References3Affected Software1

OSV•added 2022/06/17 12:26 a.m.•16 views

GHSA-WWH2-R387-G5RM tower-http's improper validation of Windows paths could lead to directory traversal attack

towerhttp::services::fs::ServeDir didn't correctly validate Windows paths meaning paths like /foo/bar/c:/windows/web/screen/img101.png would be allowed and respond with the contents of c:/windows/web/screen/img101.png. Thus users could potentially read files anywhere on the filesystem. This only...

6.9AI score

Exploits0References3

Github Security Blog•added 2022/06/17 12:26 a.m.•12 views

tower-http's improper validation of Windows paths could lead to directory traversal attack

6.7AI score

Exploits0References3Affected Software1