Vulnerability Details CVE-2018-25026
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can add the Send marker trait to an object that cannot be sent between threads safely, leading to memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md
- https://rustsec.org/advisories/RUSTSEC-2018-0019.html
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md
- https://rustsec.org/advisories/RUSTSEC-2018-0019.html
Products affected by CVE-2018-25026
-
cpe:2.3:a:actix:actix-web:0.1.0
-
cpe:2.3:a:actix:actix-web:0.1.1
-
cpe:2.3:a:actix:actix-web:0.2.0
-
cpe:2.3:a:actix:actix-web:0.2.1
-
cpe:2.3:a:actix:actix-web:0.2.2
-
cpe:2.3:a:actix:actix-web:0.2.3
-
cpe:2.3:a:actix:actix-web:0.2.4
-
cpe:2.3:a:actix:actix-web:0.3.0
-
cpe:2.3:a:actix:actix-web:0.3.1
-
cpe:2.3:a:actix:actix-web:0.3.2
-
cpe:2.3:a:actix:actix-web:0.3.3
-
cpe:2.3:a:actix:actix-web:0.4.0
-
cpe:2.3:a:actix:actix-web:0.4.1
-
cpe:2.3:a:actix:actix-web:0.4.10
-
cpe:2.3:a:actix:actix-web:0.4.2
-
cpe:2.3:a:actix:actix-web:0.4.3
-
cpe:2.3:a:actix:actix-web:0.4.4
-
cpe:2.3:a:actix:actix-web:0.4.5
-
cpe:2.3:a:actix:actix-web:0.4.6
-
cpe:2.3:a:actix:actix-web:0.4.7
-
cpe:2.3:a:actix:actix-web:0.4.8
-
cpe:2.3:a:actix:actix-web:0.4.9
-
cpe:2.3:a:actix:actix-web:0.5.0
-
cpe:2.3:a:actix:actix-web:0.5.1
-
cpe:2.3:a:actix:actix-web:0.5.2
-
cpe:2.3:a:actix:actix-web:0.5.3
-
cpe:2.3:a:actix:actix-web:0.5.4
-
cpe:2.3:a:actix:actix-web:0.5.5
-
cpe:2.3:a:actix:actix-web:0.5.6
-
cpe:2.3:a:actix:actix-web:0.5.7
-
cpe:2.3:a:actix:actix-web:0.5.8
-
cpe:2.3:a:actix:actix-web:0.6.0
-
cpe:2.3:a:actix:actix-web:0.6.1
-
cpe:2.3:a:actix:actix-web:0.6.10
-
cpe:2.3:a:actix:actix-web:0.6.11
-
cpe:2.3:a:actix:actix-web:0.6.12
-
cpe:2.3:a:actix:actix-web:0.6.13
-
cpe:2.3:a:actix:actix-web:0.6.14
-
cpe:2.3:a:actix:actix-web:0.6.15
-
cpe:2.3:a:actix:actix-web:0.6.2
-
cpe:2.3:a:actix:actix-web:0.6.3
-
cpe:2.3:a:actix:actix-web:0.6.4
-
cpe:2.3:a:actix:actix-web:0.6.5
-
cpe:2.3:a:actix:actix-web:0.6.6
-
cpe:2.3:a:actix:actix-web:0.6.7
-
cpe:2.3:a:actix:actix-web:0.6.8
-
cpe:2.3:a:actix:actix-web:0.6.9
-
cpe:2.3:a:actix:actix-web:0.7.0
-
cpe:2.3:a:actix:actix-web:0.7.1
-
cpe:2.3:a:actix:actix-web:0.7.10
-
cpe:2.3:a:actix:actix-web:0.7.11
-
cpe:2.3:a:actix:actix-web:0.7.12
-
cpe:2.3:a:actix:actix-web:0.7.13
-
cpe:2.3:a:actix:actix-web:0.7.14
-
cpe:2.3:a:actix:actix-web:0.7.2
-
cpe:2.3:a:actix:actix-web:0.7.3
-
cpe:2.3:a:actix:actix-web:0.7.4
-
cpe:2.3:a:actix:actix-web:0.7.5
-
cpe:2.3:a:actix:actix-web:0.7.6
-
cpe:2.3:a:actix:actix-web:0.7.7
-
cpe:2.3:a:actix:actix-web:0.7.8
-
cpe:2.3:a:actix:actix-web:0.7.9