Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-20997 | 1 Rust-openssl Project | 1 Rust-openssl | 2023-02-27 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the openssl crate before 0.10.9 for Rust. A use-after-free occurs in CMS Signing. | |||||
CVE-2016-10931 | 1 Rust-openssl Project | 1 Rust-openssl | 2023-02-27 | 6.8 MEDIUM | 8.1 HIGH |
An issue was discovered in the openssl crate before 0.9.0 for Rust. There is an SSL/TLS man-in-the-middle vulnerability because certificate verification is off by default and there is no API for hostname verification. |