CVEDB API

An issue was discovered in the libflate crate before 0.1.25 for Rust. MultiDecoder::read has a use-after-free, leading to arbitrary code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2019-15552

Libflate Project » Libflate » Version: 0.1.14

cpe:2.3:a:libflate_project:libflate:0.1.14
Libflate Project » Libflate » Version: 0.1.15

cpe:2.3:a:libflate_project:libflate:0.1.15
Libflate Project » Libflate » Version: 0.1.16

cpe:2.3:a:libflate_project:libflate:0.1.16
Libflate Project » Libflate » Version: 0.1.17

cpe:2.3:a:libflate_project:libflate:0.1.17
Libflate Project » Libflate » Version: 0.1.18

cpe:2.3:a:libflate_project:libflate:0.1.18
Libflate Project » Libflate » Version: 0.1.19

cpe:2.3:a:libflate_project:libflate:0.1.19
Libflate Project » Libflate » Version: 0.1.20

cpe:2.3:a:libflate_project:libflate:0.1.20
Libflate Project » Libflate » Version: 0.1.21

cpe:2.3:a:libflate_project:libflate:0.1.21
Libflate Project » Libflate » Version: 0.1.22

cpe:2.3:a:libflate_project:libflate:0.1.22
Libflate Project » Libflate » Version: 0.1.23

cpe:2.3:a:libflate_project:libflate:0.1.23
Libflate Project » Libflate » Version: 0.1.24

cpe:2.3:a:libflate_project:libflate:0.1.24