Lucene search
Rust-Openssl Security Vulnerabilities
cve
An issue was discovered in the openssl crate before 0.9.0 for Rust. There is an SSL/TLS man-in-the-middle vulnerability because certificate verification is off by default and there is no API for hostname verification.
8.1CVSS
7.5AI Score
0.001EPSS
2019-08-26 12:15 PM
35
2
cve
An issue was discovered in the openssl crate before 0.10.9 for Rust. A use-after-free occurs in CMS Signing.
9.8CVSS
8.5AI Score
0.002EPSS
2019-08-26 06:15 PM
44
2