Vulnerabilities > Rust Lang > Rust
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-04 | CVE-2024-43402 | Argument Injection or Modification vulnerability in Rust-Lang Rust Rust is a programming language. | 8.8 |
| 2023-08-24 | CVE-2023-40030 | Unspecified vulnerability in Rust-Lang Rust Cargo downloads a Rust project’s dependencies and compiles the project. | 6.1 |
| 2022-01-20 | CVE-2022-21658 | Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. | 6.3 |
| 2021-08-07 | CVE-2021-29922 | Unspecified vulnerability in Rust-Lang Rust library/std/src/net/parser.rs in Rust before 1.53.0 does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. | 9.1 |
| 2021-04-14 | CVE-2021-31162 | Double Free vulnerability in multiple products In the standard library in Rust before 1.52.0, a double free can occur in the Vec::from_iter function if freeing the element panics. | 9.8 |
| 2021-04-14 | CVE-2020-36323 | Use of Externally-Controlled Format String vulnerability in multiple products In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked. | 8.2 |
| 2021-04-14 | CVE-2018-25008 | Improper Synchronization vulnerability in Rust-Lang Rust In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut method. | 5.9 |
| 2021-04-14 | CVE-2017-20004 | Race Condition vulnerability in Rust-Lang Rust In the standard library in Rust before 1.19.0, there is a synchronization problem in the MutexGuard object. | 5.9 |
| 2021-04-11 | CVE-2021-28879 | Integer Overflow or Wraparound vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. | 9.8 |
| 2021-04-11 | CVE-2021-28878 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. | 7.5 |