CVE-2020-35916

Опубликовано: 31 дек. 2020

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in the image crate before 0.23.12 for Rust. A Mutable reference has immutable provenance. (In the case of LLVM, the IR may be always correct.)

Ссылки

https://rustsec.org/advisories/RUSTSEC-2020-0073.html
Exploit
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2020-0073.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:image-rs:image:*:*:*:*:*:rust:*:*

Версия до 0.23.12 (исключая)

EPSS

Процентиль: 17%

0.00054

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-400

Связанные уязвимости

CVE-2020-35916

CVSS3: 5.5

ubuntu

около 5 лет назад

An issue was discovered in the image crate before 0.23.12 for Rust. A Mutable reference has immutable provenance. (In the case of LLVM, the IR may be always correct.)

CVE-2020-35916

CVSS3: 5.5

debian

около 5 лет назад

An issue was discovered in the image crate before 0.23.12 for Rust. A ...

GHSA-9wgh-vjj7-7433

CVSS3: 5.5

github

больше 4 лет назад

Mutable reference with immutable provenance in image

EPSS

Процентиль: 17%

0.00054

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-400