Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rust vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-35918
An issue exists in the branca crate prior to 0.10.0 for Rust. Decoding tokens (with invalid base62 data) can panic.
Hakobaito Branca
7.5
CVSSv3
CVE-2023-33289
The urlnorm crate up to and including 0.1.4 for Rust allows Regular Expression Denial of Service (ReDos) via a crafted URL to lib.rs.
Urlnorm Project Urlnorm
7.5
CVSSv3
CVE-2020-35865
An issue exists in the os_str_bytes crate prior to 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior.
Os Str Bytes Project Os Str Bytes
7.5
CVSSv3
CVE-2020-36212
An issue exists in the abi_stable crate prior to 0.9.1 for Rust. DrainFilter lacks soundness because of a double drop.
Abi Stable Project Abi Stable
9.8
CVSSv3
CVE-2021-45688
An issue exists in the ash crate prior to 0.33.1 for Rust. util::read_spv may read from uninitialized memory locations.
Ash Project Ash
9.8
CVSSv3
CVE-2021-45697
An issue exists in the molecule crate prior to 0.7.2 for Rust. A FixVec partial read has an incorrect result.
Nervos Molecule
7.5
CVSSv3
CVE-2019-16141
An issue exists in the once_cell crate prior to 1.0.1 for Rust. There is a panic during initialization of Lazy.
Once Cell Project Once Cell
7.5
CVSSv3
CVE-2018-25027
An issue exists in the libpulse-binding crate prior to 1.2.1 for Rust. get_format_info can cause a use-after-free.
Libpulse-binding Project Libpulse-binding
7.5
CVSSv3
CVE-2018-25028
An issue exists in the libpulse-binding crate prior to 1.2.1 for Rust. get_context can cause a use-after-free.
Libpulse-binding Project Libpulse-binding
7.5
CVSSv3
CVE-2019-25007
An issue exists in the streebog crate prior to 0.8.0 for Rust. The Streebog hash function can cause a panic.
Streebog Project Streebog
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »