CVE-2020-35920

Published: Dic 31, 2020 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2021-1555 Aliases: GHSA-458v-4hrf-g3m4

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,5

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

LOW 2,1

Source: [email protected]

Access Vector: local

Access Complexity: low

Authentication: none

Confidentiality: none

Integrity: none

Availability: partial

Description

AI Translation Available

An issue was discovered in the socket2 crate before 0.3.16 for Rust. It has false expectations about the std::net::SocketAddr memory representation.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0006

Percentile

0,2th

Updated

EPSS Score Trend (Last 91 Days)

Application

Socket2 by Rust-Lang

Product Information

Vendor Rust-Lang

Product Socket2

Version Range Affected

To 0.3.16 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:rust-lang:socket2:*:*:*:*:*:rust:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://rustsec.org/advisories/RUSTSEC-2020-0079.html

Exploit Third Party Advisory

https://rustsec.org/advisories/RUSTSEC-2020-0079.html

Exploit Third Party Advisory

https://rustsec.org/advisories/RUSTSEC-2020-0079.html

CVE-2020-35920

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 91 Days)

Socket2 by Rust-Lang

Product Information

Iscriviti alla newsletter