Show filters
8 Total Results
Displaying 1-8 of 8
Sort by:
Attacker Value
Unknown
CVE-2018-25026
Disclosure Date: December 27, 2021 (last updated February 23, 2025)
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can add the Send marker trait to an object that cannot be sent between threads safely, leading to memory corruption.
0
Attacker Value
Unknown
CVE-2018-25025
Disclosure Date: December 27, 2021 (last updated February 23, 2025)
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.
0
Attacker Value
Unknown
CVE-2018-25024
Disclosure Date: December 27, 2021 (last updated February 23, 2025)
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption.
0
Attacker Value
Unknown
CVE-2021-38512
Disclosure Date: August 10, 2021 (last updated February 23, 2025)
An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling (aka HRS) can occur, potentially leading to credential disclosure.
0
Attacker Value
Unknown
CVE-2020-35898
Disclosure Date: December 31, 2020 (last updated February 22, 2025)
An issue was discovered in the actix-utils crate before 2.0.0 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data.
0
Attacker Value
Unknown
CVE-2020-35899
Disclosure Date: December 31, 2020 (last updated February 22, 2025)
An issue was discovered in the actix-service crate before 1.0.6 for Rust. The Cell implementation allows obtaining more than one mutable reference to the same data.
0
Attacker Value
Unknown
CVE-2020-35902
Disclosure Date: December 31, 2020 (last updated February 22, 2025)
An issue was discovered in the actix-codec crate before 0.3.0-beta.1 for Rust. There is a use-after-free in Framed.
0
Attacker Value
Unknown
CVE-2020-35901
Disclosure Date: December 31, 2020 (last updated February 22, 2025)
An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream.
0
