Vulnerability Details CVE-2020-35909
An issue was discovered in the multihash crate before 0.11.3 for Rust. The from_slice parsing code can panic via unsanitized data from a network server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2020-35909
-
cpe:2.3:a:protocol:multihash:-
-
cpe:2.3:a:protocol:multihash:0.10.0
-
cpe:2.3:a:protocol:multihash:0.10.1
-
cpe:2.3:a:protocol:multihash:0.11.0
-
cpe:2.3:a:protocol:multihash:0.11.1
-
cpe:2.3:a:protocol:multihash:0.11.2
-
cpe:2.3:a:protocol:multihash:0.3.0
-
cpe:2.3:a:protocol:multihash:0.4.0
-
cpe:2.3:a:protocol:multihash:0.4.1
-
cpe:2.3:a:protocol:multihash:0.4.2
-
cpe:2.3:a:protocol:multihash:0.5.0
-
cpe:2.3:a:protocol:multihash:0.5.1
-
cpe:2.3:a:protocol:multihash:0.5.2
-
cpe:2.3:a:protocol:multihash:0.6.0
-
cpe:2.3:a:protocol:multihash:0.7.0
-
cpe:2.3:a:protocol:multihash:0.8.0
-
cpe:2.3:a:protocol:multihash:0.9.3
-
cpe:2.3:a:protocol:multihash:0.9.4