CVE-2024-12224
8.8HIGHImproper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while ano
Опубликовано: 5/30/2025Обновлено: 6/25/2025
Описание
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.
ИИ-АнализНа базе ИИ
Затронутые продукты
servoidna
Ссылки
- https://bugzilla.mozilla.org/show_bug.cgi?id=1887898ExploitIssue Tracking
- https://rustsec.org/advisories/RUSTSEC-2024-0421.htmlThird Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1887898ExploitIssue Tracking