How severe is CVE-2020-35926?

CVE-2020-35926 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-35926

Name: nanorand
Author: nanorand_project

9.8CRITICAL

An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all zeroes because integer truncation was mishandled.

Publicado: 12/31/2020Actualizado: 11/21/2024

Descripción

An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all zeroes because integer truncation was mishandled.

Análisis IAImpulsado por IA

Productos Afectados

nanorand_projectnanorand

Referencias

https://rustsec.org/advisories/RUSTSEC-2020-0089.html
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2020-0089.html
Third Party Advisory