VDB
RUSTSEC-2024-0336
RUSTSEC-2024-0336
PUBLISHED
CVSS 7.5 HIGH
`rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| crates.io | rustls | 0.0.0-0, 0.22.0, 0.23.0 |
Timeline
- Apr 19, 2024 CVE Published
- Apr 20, 2024 CVE Updated