Vendor
Rust
Products
4
CVEs
5
Across products
5
Status
Private
Products
4- 2 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
5| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-35313 | Hig | 0.40 | 7.3 | 0.00 | May 17, 2024 | In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 (with full vanguards), aka TROVE-2024-004. | ||
| CVE-2024-35312 | Med | 0.33 | 6.2 | 0.00 | May 17, 2024 | In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 (with lite vanguards), aka TROVE-2024-003. | ||
| CVE-2023-53161 | 0.00 | — | 0.00 | Jul 28, 2025 | The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic. | |||
| CVE-2024-58266 | 0.00 | — | 0.00 | Jul 27, 2025 | The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection. | |||
| CVE-2023-53156 | 0.00 | — | 0.00 | Jul 27, 2025 | The transpose crate before 0.2.3 for Rust allows an integer overflow via input_width and input_height arguments. |
- risk 0.40cvss 7.3epss 0.00
In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 (with full vanguards), aka TROVE-2024-004.
- risk 0.33cvss 6.2epss 0.00
In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 (with lite vanguards), aka TROVE-2024-003.
- CVE-2023-53161Jul 28, 2025risk 0.00cvss —epss 0.00
The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic.
- CVE-2024-58266Jul 27, 2025risk 0.00cvss —epss 0.00
The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.
- CVE-2023-53156Jul 27, 2025risk 0.00cvss —epss 0.00
The transpose crate before 0.2.3 for Rust allows an integer overflow via input_width and input_height arguments.