Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In December 2021
CVE-2021-45691
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
CVE-2021-45692
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_extension_others may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-12-27
CVE-2021-45693
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string_primitive may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
CVE-2021-45694
An issue was discovered in the rdiff crate through 2021-02-03 for Rust. Window may read from uninitialized memory locations.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-27
CVE-2021-45695
An issue was discovered in the mopa crate through 2021-06-01 for Rust. It incorrectly relies on Trait memory layout, possibly leading to future occurrences of arbitrary code execution or ASLR bypass.
CVSS Score
9.8
EPSS Score
0.009
Published
2021-12-27
CVE-2021-45696
An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Hashes of long messages may be incorrect when the AVX2-accelerated backend is used.
CVSS Score
9.8
EPSS Score
0.002
Published
2021-12-27
CVE-2021-45697
An issue was discovered in the molecule crate before 0.7.2 for Rust. A FixVec partial read has an incorrect result.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
CVE-2021-45698
An issue was discovered in the ckb crate before 0.40.0 for Rust. A get_block_template RPC call may fail in situations where it is supposed to select a Nervos CKB blockchain transaction with a higher fee rate than another transaction.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
CVE-2021-45699
An issue was discovered in the ckb crate before 0.40.0 for Rust. Remote attackers may be able to conduct a 51% attack against the Nervos CKB blockchain by triggering an inability to allocate memory for the misbehavior HashMap.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-12-27
CVE-2021-45700
An issue was discovered in the ckb crate before 0.40.0 for Rust. Attackers can cause a denial of service (Nervos CKB blockchain node crash) via a dead call that is used as a DepGroup.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved