Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rust vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-33289
The urlnorm crate up to and including 0.1.4 for Rust allows Regular Expression Denial of Service (ReDos) via a crafted URL to lib.rs.
Urlnorm Project Urlnorm
7.5
CVSSv3
CVE-2019-16141
An issue exists in the once_cell crate prior to 1.0.1 for Rust. There is a panic during initialization of Lazy.
Once Cell Project Once Cell
9.8
CVSSv3
CVE-2021-45688
An issue exists in the ash crate prior to 0.33.1 for Rust. util::read_spv may read from uninitialized memory locations.
Ash Project Ash
9.8
CVSSv3
CVE-2021-45697
An issue exists in the molecule crate prior to 0.7.2 for Rust. A FixVec partial read has an incorrect result.
Nervos Molecule
9.8
CVSSv3
CVE-2020-35866
An issue exists in the rusqlite crate prior to 0.23.0 for Rust. Memory safety can be violated via VTab / VTabCursor.
Rusqlite Project Rusqlite
7.5
CVSSv3
CVE-2018-25027
An issue exists in the libpulse-binding crate prior to 1.2.1 for Rust. get_format_info can cause a use-after-free.
Libpulse-binding Project Libpulse-binding
7.5
CVSSv3
CVE-2018-25028
An issue exists in the libpulse-binding crate prior to 1.2.1 for Rust. get_context can cause a use-after-free.
Libpulse-binding Project Libpulse-binding
7.5
CVSSv3
CVE-2019-25007
An issue exists in the streebog crate prior to 0.8.0 for Rust. The Streebog hash function can cause a panic.
Streebog Project Streebog
7.5
CVSSv3
CVE-2020-35865
An issue exists in the os_str_bytes crate prior to 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior.
Os Str Bytes Project Os Str Bytes
9.8
CVSSv3
CVE-2020-35885
An issue exists in the alpm-rs crate through 2020-08-20 for Rust. StrcCtx performs improper memory deallocation.
Alpm-rs Project Alpm-rs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »