VYPR
Vendor

Sfackler

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2024-3296MedApr 4, 2024
    risk 0.38cvss 5.9epss 0.00

    A timing-based side-channel flaw exists in the rust-openssl package, which could be sufficient to recover a plaintext across a network in a Bleichenbacher-style attack. To achieve successful decryption, an attacker would have to be able to send a large number of trial messages…

  • CVE-2025-24898MedFeb 3, 2025
    risk 0.34cvss epss 0.01

    rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a lifetime bound to the `client` argument. In situations where the `sever` buffer's…

  • CVE-2023-53159MedJul 28, 2025
    risk 0.22cvss 4.5epss 0.00

    The openssl crate before 0.10.55 for Rust allows an out-of-bounds read via an empty string to X509VerifyParamRef::set_host.