Vulnerabilities > CVE-2019-25009 - Double Free vulnerability in Hyper Http

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
hyper
CWE-415
critical

Summary

An issue was discovered in the http crate before 0.1.20 for Rust. The HeaderMap::Drain API can use a raw pointer, defeating soundness.

Common Weakness Enumeration (CWE)