Rustls Project: >> Rustls Security Vulnerabilities
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.
CVSS Score
5.3
EPSS Score
0.01
Published
2024-12-06
rustls-mio/examples/tlsserver.rs in the rustls crate before 0.16.0 for Rust allows attackers to cause a denial of service (loop of conn_event and ready) by arranging for a client to never be writable.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-08-26