Out-of-Bounds Read in simd-json Crate for Rust
CVE-2019-15550

7.5HIGH

Key Information:

Vendor: Simdjson Project
Status: Simdjson
Vendor: CVE Published:; 26 August 2019

🔔 Create Simdjson Project Vulnerability Alert

What is CVE-2019-15550?

An issue in the simd-json crate for Rust prior to version 0.1.15 leads to an out-of-bounds read. This flaw entails an incorrect crossing of a page boundary, which could potentially allow an attacker to access unauthorized memory areas, leading to unexpected behavior or crashes in applications using this crate.

References

https://rustsec.org/advisories/RUSTSEC-2019-0008.html

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 26, 2019
Vulnerability Reserved
Aug 25, 2019

CVE-2019-15550 Data

JSON