Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-x33c-7c2v-mrj9
  • crates.io/apollo-router
 Apollo Router Affected by an Access Control Bypass on Polymorphic Types 2 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-g8jh-vg5j-4h3f
  • crates.io/apollo-router
 Apollo Router Improperly Enforces Renamed Access Control Directives 2 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-vf95-55w6-qmrf
  • crates.io/youki
 youki container escape and denial of service due to arbitrary write gadgets and procfs write redirects 3 days ago
  • Fix available
  • Severity - 7.3 (High)
GHSA-4g74-7cff-xcv8
  • crates.io/youki
 youki container escape via "masked path" abuse due to mount race conditions 3 days ago
  • Fix available
  • Severity - 7.3 (High)
MAL-2025-49350
  • crates.io/replit_ruspty
 Malicious code in replit_ruspty (crates.io) 5 days ago
  • No fix available
GHSA-7vjm-6qgq-3mrq
  • crates.io/shaman
 Shaman has soundness issues and is unmaintained 5 days ago
  • No fix available
GHSA-4h67-722j-5pmc
  • crates.io/wasmtime
 Wasmtime vulnerable to segfault when using component resources 27 Oct
  • Fix available
  • Severity - 2.1 (Low)
GHSA-wwxp-hxh6-8gf8
  • crates.io/binary_vec_io
 binary_vec_io access memory out-of-bounds in binary_read_to_ref and binary_write_from_ref 22 Oct
  • No fix available
  • Severity - 7.3 (High)
GHSA-x77x-7mmh-cxv3
  • crates.io/ncurses
 ncurses exposes uninitialized memory in string reading functions 22 Oct
  • No fix available
  • Severity - 5.5 (Medium)
GHSA-xcpm-76hf-c9cc
  • crates.io/borrowck_sacrifices
 Borrowck Scarifices exposes uninitialized memory in any_as_u8_slice 22 Oct
  • Fix available
  • Severity - 2.0 (Low)
GHSA-fp5x-7m4q-449f
  • crates.io/direct_ring_buffer
 Direct Ring Buffer has uninitialized memory exposure in create_ring_buffer 21 Oct
  • Fix available
  • Severity - 2.0 (Low)
GHSA-h5j3-crg5-8jqm
  • crates.io/orx-pinned-vec
 orx-pinned-vec has undefined behavior in index_of_ptr with empty slices 21 Oct
  • Fix available
  • Severity - 2.0 (Low)
GHSA-j5gw-2vrg-8fgx
  • crates.io/astral-tokio-tar
 astral-tokio-tar Vulnerable to PAX Header Desynchronization 21 Oct
  • Fix available
  • Severity - 8.1 (High)
RUSTSEC-2025-0105
  • crates.io/direct_ring_buffer
 Uninitialized memory exposure in create_ring_buffer 21 Oct
  • Fix available
RUSTSEC-2025-0106
  • crates.io/orx-pinned-vec
 Undefined behavior in index_of_ptr with empty slices 21 Oct
  • Fix available
RUSTSEC-2025-0107
  • crates.io/borrowck_sacrifices
 Uninitialized memory exposure in any_as_u8_slice 21 Oct
  • Fix available
Load more...