CVE-2024-58253

Sažetak

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value.

Reference

https://github.com/CasualX/obfstr/compare/v0.4.3...v0.4.4
https://github.com/CasualX/obfstr/issues/60

CVSS

Base:	2.9
Impact:	1.4
Exploitability:	1.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	LOW	NONE

CVSS vektor

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Zadnje važnije ažuriranje

02-05-2025 - 20:15

Objavljeno

02-05-2025 - 20:15