Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-f632-vm87-2m2f
  • crates.io/qdrant
 qdrant has arbitrary file write via `/logger` endpoint 2 hours ago
  • Fix available
  • Severity - 8.5 (High)
GHSA-r6v5-fh4h-64xc
  • crates.io/time
 time vulnerable to stack exhaustion Denial of Service attack 5 hours ago
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-j39j-6gw9-jw6h
  • crates.io/git2
 git2 has potential undefined behavior when dereferencing Buf struct yesterday
  • Fix available
  • Severity - 2.7 (Low)
GHSA-8x3w-qj7j-gqhf
  • crates.io/openmls
 openmls has improper tag validation yesterday
  • Fix available
  • Severity - 7.1 (High)
GHSA-434x-w66g-qw3r
  • crates.io/bytes
 bytes has integer overflow in BytesMut::reserve 2 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-h395-gr6q-cpjc
  • crates.io/jsonwebtoken
 jsonwebtoken has Type Confusion that leads to potential authorization bypass 2 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-r54g-49rx-98cr
  • crates.io/rustfs
 RustFS Logs Sensitive Credentials in Plaintext 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-fc6g-2gcp-2qrq
  • crates.io/rustfs
 RustFS has SourceIp bypass via spoofed X-Forwarded-For/Real-IP headers 2 days ago
  • Fix available
  • Severity - 7.7 (High)
RUSTSEC-2026-0007
  • crates.io/bytes
 Integer overflow in `BytesMut::reserve` 2 days ago
  • Fix available
GHSA-h37v-hp6w-2pp8
  • crates.io/ml-dsa
 ml-dsa's UseHint function has off by two error when r0 equals zero 3 days ago
  • Fix available
  • Severity - 5.5 (Medium)
RUSTSEC-2026-0008
  • crates.io/git2
 Potential undefined behavior when dereferencing Buf struct 3 days ago
  • Fix available
GHSA-96xm-fv9w-pf3f
  • crates.io/soroban-sdk
 soroban-sdk has overflow in Bytes::slice, Vec::slice, GenRange::gen_range for u64 28 Jan
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-5x2r-hc65-25f9
  • crates.io/ml-dsa
 ML-DSA Signature Verification Accepts Signatures with Repeated Hint Indices 28 Jan
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-253q-9q78-63x4
  • crates.io/clatter
 Clatter has a PSK Validity Rule Violation issue 28 Jan
  • Fix available
  • Severity - 8.0 (High)
GHSA-x5m4-43jf-hh65
  • crates.io/soroban-fixed-point-math
 soroban-fixed-point-math has Incorrect Rounding and Overflow Handling in Signed Fixed-Point Math with Negatives 28 Jan
  • Fix available
  • Severity - 7.5 (High)
GHSA-5w5r-mf82-595p
  • crates.io/capnp
 Cap'n Proto has Undefined Behavior in constant::Reader and StructSchema 28 Jan
  • Fix available
  • Severity - 9.3 (Critical)
Load more...