Vulnerabilities > Amazon > Tough

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-41150 Path Traversal vulnerability in Amazon Tough
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.
network
low complexity
amazon CWE-22
6.5
2021-10-19 CVE-2021-41149 Path Traversal vulnerability in Amazon Tough
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.
network
low complexity
amazon CWE-22
8.1
2020-07-09 CVE-2020-15093 Improper Verification of Cryptographic Signature vulnerability in Amazon Tough
The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures.
network
low complexity
amazon CWE-347
8.6