Http Crate 漏洞

版本

0.1.0	6
0.1.1	6
0.1.2	6
0.1.3	6
0.1.4	6

修正

Official Fix	6
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	0

易受攻击性

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	6

访问向量

Not Defined	0
Physical	0
Local	0
Adjacent	4
Network	2

身份验证

Not Defined	0
High	0
Low	4
None	2

用户交互

Not Defined	0
Required	0
None	6

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	4
≤7	0
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	2
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

供应商

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

零日攻击

<1k	2
<2k	2
<5k	2
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

本日攻击

<1k	6
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (29): 0.1, 0.1.1, 0.1.2, 0.1.3, 0.1.4, 0.1.5, 0.1.6, 0.1.7, 0.1.8, 0.1.9, 0.1.11, 0.1.12, 0.1.13, 0.1.14, 0.1.15, 0.1.16, 0.1.17, 0.1.18, 0.1.19, 1.0, 3.0.0-beta, 3.0.0-beta.1, 3.0.0-beta.2, 3.0.0-beta.3, 3.0.0-beta.4, 3.0.0-beta.5, 3.0.0-beta.6, 3.0.0-beta.7, 3.0.0-beta.8

软件类型: Rust Package

已发布	Base	Temp	漏洞	0day	今天	易	修正	CVE
2021-08-11	5.5	5.3	actix-http Crate HTTP 权限升级	$0-$5k	$0-$5k	Not Defined	Official Fix	CVE-2021-38512
2020-12-31	5.5	5.5	actix-http Crate BodyStream 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	CVE-2020-35901
2020-12-31	5.5	5.5	http crate API Drain Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	CVE-2019-25009
2020-12-31	3.5	3.5	http crate reserve 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	CVE-2019-25008
2020-09-14	6.4	6.1	http crate reserve 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	CVE-2020-25574

◂ 上一步一览下一步 ▸

Interested in the pricing of exploits?

See the underground prices here!