CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-45705

An issue was discovered in the nanorand crate before 0.6.1 for Rust. There can be multiple mutable references to the same object because the TlsWyRand Deref implementation dereferences a raw pointer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/nanorand/RUSTSEC-2021-0114.md
https://rustsec.org/advisories/RUSTSEC-2021-0114.html
https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/nanorand/RUSTSEC-2021-0114.md
https://rustsec.org/advisories/RUSTSEC-2021-0114.html

Products affected by CVE-2021-45705

Nanorand Project » Nanorand » Version: 0.5.0

cpe:2.3:a:nanorand_project:nanorand:0.5.0
Nanorand Project » Nanorand » Version: 0.5.1

cpe:2.3:a:nanorand_project:nanorand:0.5.1
Nanorand Project » Nanorand » Version: 0.5.2

cpe:2.3:a:nanorand_project:nanorand:0.5.2
Nanorand Project » Nanorand » Version: 0.6.0

cpe:2.3:a:nanorand_project:nanorand:0.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-45705

Products

Pricing

Contact Us