Vulnerabilities > Amazon > Tough > 0.6.0

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-41150 Path Traversal vulnerability in Amazon Tough
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.
network
amazon CWE-22
3.5
3.5
2021-10-19 CVE-2021-41149 Path Traversal vulnerability in Amazon Tough
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.
network
low complexity
amazon CWE-22
8.5
8.5
2020-07-09 CVE-2020-15093 Improper Verification of Cryptographic Signature vulnerability in Amazon Tough
The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures.
network
low complexity
amazon CWE-347
5.0
5.0