Export limit exceeded: 75384 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (75384 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-35901 | 1 Actix | 1 Actix-http | 2024-11-21 | 7.5 High |
| An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream. | ||||
| CVE-2020-35896 | 1 Ws-rs Project | 1 Ws-rs | 2024-11-21 | 7.5 High |
| An issue was discovered in the ws crate through 2020-09-25 for Rust. The outgoing buffer is not properly limited, leading to a remote memory-consumption attack. | ||||
| CVE-2020-35894 | 1 Obstack Project | 1 Obstack | 2024-11-21 | 7.5 High |
| An issue was discovered in the obstack crate before 0.1.4 for Rust. Unaligned references can occur. | ||||
| CVE-2020-35893 | 1 Simple-slab Project | 1 Simple-slab | 2024-11-21 | 7.5 High |
| An issue was discovered in the simple-slab crate before 0.3.3 for Rust. remove() has an off-by-one error, causing memory leakage and a drop of uninitialized memory. | ||||
| CVE-2020-35891 | 1 Ordnung Project | 1 Ordnung | 2024-11-21 | 7.5 High |
| An issue was discovered in the ordnung crate through 2020-09-03 for Rust. compact::Vec violates memory safety via a remove() double free. | ||||
| CVE-2020-35890 | 1 Ordnung Project | 1 Ordnung | 2024-11-21 | 7.5 High |
| An issue was discovered in the ordnung crate through 2020-09-03 for Rust. compact::Vec violates memory safety via out-of-bounds access for large capacity. | ||||
| CVE-2020-35889 | 1 Crayon Project | 1 Crayon | 2024-11-21 | 8.1 High |
| An issue was discovered in the crayon crate through 2020-08-31 for Rust. A TOCTOU issue has a resultant memory safety violation via HandleLike. | ||||
| CVE-2020-35882 | 1 Rocket | 1 Rocket | 2024-11-21 | 8.1 High |
| An issue was discovered in the rocket crate before 0.4.5 for Rust. LocalRequest::clone creates more than one mutable references to the same object, possibly causing a data race. | ||||
| CVE-2020-35875 | 1 Tokio | 1 Tokio-rustls | 2024-11-21 | 7.5 High |
| An issue was discovered in the tokio-rustls crate before 0.13.1 for Rust. Excessive memory usage may occur when data arrives quickly. | ||||
| CVE-2020-35874 | 1 Internment Project | 1 Internment | 2024-11-21 | 8.1 High |
| An issue was discovered in the internment crate through 2020-05-28 for Rust. ArcIntern::drop has a race condition and resultant use-after-free. | ||||
| CVE-2020-35871 | 1 Rusqlite Project | 1 Rusqlite | 2024-11-21 | 8.1 High |
| An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race. | ||||
| CVE-2020-35865 | 1 Os Str Bytes Project | 1 Os Str Bytes | 2024-11-21 | 7.5 High |
| An issue was discovered in the os_str_bytes crate before 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior. | ||||
| CVE-2020-35864 | 1 Google | 1 Flatbuffers | 2024-11-21 | 7.5 High |
| An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks. | ||||
| CVE-2020-35861 | 1 Bumpalo Project | 1 Bumpalo | 2024-11-21 | 7.5 High |
| An issue was discovered in the bumpalo crate before 3.2.1 for Rust. The realloc feature allows the reading of unknown memory. Attackers can potentially read cryptographic keys. | ||||
| CVE-2020-35857 | 1 Trust-dns-server Project | 1 Trust-dns-server | 2024-11-21 | 7.5 High |
| An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption. | ||||
| CVE-2020-35851 | 1 Hgiga | 2 Msr45 Isherlock-user, Ssr45 Isherlock-user | 2024-11-21 | 8.1 High |
| HGiga MailSherlock does not validate specific parameters properly. Attackers can use the vulnerability to launch Command inject attacks remotely and execute arbitrary commands of the system. | ||||
| CVE-2020-35849 | 1 Mantisbt | 1 Mantisbt | 2024-11-21 | 7.5 High |
| An issue was discovered in MantisBT before 2.24.4. An incorrect access check in bug_revision_view_page.php allows an unprivileged attacker to view the Summary field of private issues, as well as bugnotes revisions, gaining access to potentially confidential information via the bugnote_id parameter. | ||||
| CVE-2020-35845 | 1 Faststone | 1 Image Viewer | 2024-11-21 | 7.8 High |
| FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted image file) at FSViewer.exe+0x96cf. | ||||
| CVE-2020-35844 | 1 Faststone | 1 Image Viewer | 2024-11-21 | 7.8 High |
| FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted image file) at FSViewer.exe+0xbe9c4. | ||||
| CVE-2020-35804 | 1 Netgear | 10 D7800, D7800 Firmware, R7800 and 7 more | 2024-11-21 | 7.6 High |
| Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D7800 before 1.0.1.58, R7800 before 1.0.2.74, R8900 before 1.0.5.18, R9000 before 1.0.5.18, and XR700 before 1.0.1.34. | ||||