VYPR
Vendor

Tokio Rs

Products
5
CVEs
4
Across products
4
Status
Private

Products

5

Recent CVEs

4
  • CVE-2024-27308HigMar 6, 2024
    risk 0.42cvss 7.5epss 0.01

    Mio is a Metal I/O library for Rust. When using named pipes on Windows, mio will under some circumstances return invalid tokens that correspond to named pipes that have already been deregistered from the mio registry. The impact of this vulnerability depends on how mio is used.…

  • CVE-2022-3212HigSep 14, 2022
    risk 0.42cvss 7.5epss 0.01

    <bytes::Bytes as axum_core::extract::FromRequest>::from_request would not, by default, set a limit for the size of the request body. That meant if a malicious peer would send a very large (or infinite) body your server might run out of memory and crash. This also applies to…

  • CVE-2023-22466MedJan 4, 2023
    risk 0.28cvss 5.4epss 0.01

    Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions 1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting `pipe_mode` will reset `reject_remote_clients` to `false`. If the application has previously…

  • CVE-2025-55159MedAug 11, 2025
    risk 0.26cvss epss 0.00

    slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the get_disjoint_mut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or…