Vulnerability Details CVE-2020-36210
An issue was discovered in the autorand crate before 0.2.3 for Rust. Because of impl Random on arrays, uninitialized memory can be dropped when a panic occurs, leading to memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.6%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2020-36210
-
cpe:2.3:a:autorand_project:autorand:-
-
cpe:2.3:a:autorand_project:autorand:0.1.1
-
cpe:2.3:a:autorand_project:autorand:0.2.0
-
cpe:2.3:a:autorand_project:autorand:0.2.1
-
cpe:2.3:a:autorand_project:autorand:0.2.2