Search Results (363449 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2020-35883 1 Mozwire Project 1 Mozwire 2024-11-21 9.1 Critical
An issue was discovered in the mozwire crate through 2020-08-18 for Rust. A ../ directory-traversal situation allows overwriting local files that have .conf at the end of the filename.
CVE-2020-35882 1 Rocket 1 Rocket 2024-11-21 8.1 High
An issue was discovered in the rocket crate before 0.4.5 for Rust. LocalRequest::clone creates more than one mutable references to the same object, possibly causing a data race.
CVE-2020-35881 1 Traitobject Project 1 Traitobject 2024-11-21 9.8 Critical
An issue was discovered in the traitobject crate through 2020-06-01 for Rust. It has false expectations about fat pointers, possibly causing memory corruption in, for example, Rust 2.x.
CVE-2020-35880 1 Bigint Project 1 Bigint 2024-11-21 9.8 Critical
An issue was discovered in the bigint crate through 2020-05-07 for Rust. It allows a soundness violation.
CVE-2020-35879 1 Rulinalg Project 1 Rulinalg 2024-11-21 9.8 Critical
An issue was discovered in the rulinalg crate through 2020-02-11 for Rust. There are incorrect lifetime-boundary definitions for RowMut::raw_slice and RowMut::raw_slice_mut.
CVE-2020-35878 1 Ozone Project 1 Ozone 2024-11-21 9.8 Critical
An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of the dropping of uninitialized memory.
CVE-2020-35877 1 Ozone Project 1 Ozone 2024-11-21 9.8 Critical
An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of out-of-bounds access.
CVE-2020-35876 1 Rio Project 1 Rio 2024-11-21 9.8 Critical
An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race.
CVE-2020-35875 1 Tokio 1 Tokio-rustls 2024-11-21 7.5 High
An issue was discovered in the tokio-rustls crate before 0.13.1 for Rust. Excessive memory usage may occur when data arrives quickly.
CVE-2020-35874 1 Internment Project 1 Internment 2024-11-21 8.1 High
An issue was discovered in the internment crate through 2020-05-28 for Rust. ArcIntern::drop has a race condition and resultant use-after-free.
CVE-2020-35873 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because sessions.rs has a use-after-free.
CVE-2020-35872 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the repr(Rust) type.
CVE-2020-35871 1 Rusqlite Project 1 Rusqlite 2024-11-21 8.1 High
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race.
CVE-2020-35870 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API use-after-free.
CVE-2020-35869 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because rusqlite::trace::log mishandles format strings.
CVE-2020-35868 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via UnlockNotification.
CVE-2020-35867 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via create_module.
CVE-2020-35866 1 Rusqlite Project 1 Rusqlite 2024-11-21 9.8 Critical
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via VTab / VTabCursor.
CVE-2020-35865 1 Os Str Bytes Project 1 Os Str Bytes 2024-11-21 7.5 High
An issue was discovered in the os_str_bytes crate before 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior.
CVE-2020-35864 1 Google 1 Flatbuffers 2024-11-21 7.5 High
An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks.