Vulnerability Details CVE-2021-45680
An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/vec-const/RUSTSEC-2021-0082.md
- https://rustsec.org/advisories/RUSTSEC-2021-0082.html
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/vec-const/RUSTSEC-2021-0082.md
- https://rustsec.org/advisories/RUSTSEC-2021-0082.html
Products affected by CVE-2021-45680
-
cpe:2.3:a:vec-const_project:vec-const:-
-
cpe:2.3:a:vec-const_project:vec-const:1.0.0
-
cpe:2.3:a:vec-const_project:vec-const:1.0.1
-
cpe:2.3:a:vec-const_project:vec-const:1.1.0
-
cpe:2.3:a:vec-const_project:vec-const:1.1.1
-
cpe:2.3:a:vec-const_project:vec-const:1.2.0
-
cpe:2.3:a:vec-const_project:vec-const:1.2.1