CVE-2024-12224
8.8HIGHImproper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while ano
게시됨: 5/30/2025업데이트됨: 6/25/2025
설명
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.
AI 분석AI 기반
영향받는 제품
servoidna
참조
- https://bugzilla.mozilla.org/show_bug.cgi?id=1887898ExploitIssue Tracking
- https://rustsec.org/advisories/RUSTSEC-2024-0421.htmlThird Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1887898ExploitIssue Tracking