Security Vulnerabilities - CVEs Published In December 2021
An issue was discovered in the bronzedb-protocol crate through 2021-01-03 for Rust. ReadKVExt may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
An issue was discovered in the binjs_io crate through 2021-01-03 for Rust. The Read method may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
An issue was discovered in the flumedb crate through 2021-01-07 for Rust. read_entry may read from uninitialized memory locations.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-12-27
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-12-27
An issue was discovered in the rust-embed crate before 6.3.0 for Rust. A ../ directory traversal can sometimes occur in debug mode.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-12-26
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_scalar_function has a use-after-free.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-26
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_aggregate_function has a use-after-free.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-26
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_window_function has a use-after-free.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-26
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_collation has a use-after-free.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-12-26