Actix: >> Actix-Http Security Vulnerabilities
An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling (aka HRS) can occur, potentially leading to credential disclosure.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-08-10
An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream.
CVSS Score
7.5
EPSS Score
0.004
Published
2020-12-31