RSS   Vulnerabilities for 'Actix-http'   RSS

2021-08-10
 
CVE-2021-38512

CWE-444
 

 
An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling (aka HRS) can occur, potentially leading to credential disclosure.

 
2020-12-31
 
CVE-2020-35901

CWE-416
 

 
An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream.

 

 >>> Vendor: Actix 4 Products
Actix-utils
Actix-http
Actix-codec
Actix-service


Copyright 2021, cxsecurity.com

 

Back to Top