Skip to main content
CVE-2021-28879 CRITICAL POC PATCH Act Now

In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Integer Overflow Rust Fedora
NVD GitHub
CVSS 3.1
9.8
EPSS
2.4%
CVE-2021-28878 HIGH POC PATCH This Week

In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Rust Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
2.0%
CVE-2021-28875 HIGH POC PATCH This Week

In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Rust
NVD GitHub
CVSS 3.1
7.5
EPSS
2.1%
CVE-2021-30485 MEDIUM POC This Month

An issue was discovered in libezxml.a in ezXML 0.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Ezxml Debian Linux
NVD
CVSS 3.1
6.5
EPSS
1.2%
CVE-2021-28876 MEDIUM POC PATCH This Month

In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Rust Fedora
NVD GitHub
CVSS 3.1
5.3
EPSS
1.6%
CVE-2021-28877 HIGH PATCH This Week

In the standard library in Rust before 1.51.0, the Zip implementation calls __iterator_get_unchecked() for the same index more than once when nested. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Rust
NVD GitHub
CVSS 3.1
7.5
EPSS
1.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy