Vulnerabilities > CVE-2018-25025 - Out-of-bounds Write vulnerability in Actix Actix-Web
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md
- https://rustsec.org/advisories/RUSTSEC-2018-0019.html
- https://rustsec.org/advisories/RUSTSEC-2018-0019.html