Vulnerabilities > CVE-2020-25576 - Incorrect Type Conversion or Cast vulnerability in Rand Project Rand

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
rand-project
CWE-704
critical

Summary

An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.

Common Weakness Enumeration (CWE)