Known Vulnerabilities for Rust by Rust-lang

Listed below are 10 of the newest known vulnerabilities associated with "Rust" by "Rust-lang".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-58266 json Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki's webview-based pages communicate with the Ru... Not Provided 2026-07-07 2026-07-08
CVE-2026-55838 json RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.7 and earlier, the real-time metrics endpoint at /... Not Provided 2026-06-26 2026-06-27
CVE-2026-55189 json RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, when the FTP frontend is ... Not Provided 2026-06-26 2026-06-29
CVE-2026-55188 json RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, RustFS contains an author... Not Provided 2026-06-26 2026-06-27
CVE-2026-54888 json Uncontrolled Recursion vulnerability in leandrocp mdex allows denial of service via deeply nested Markdown input. mdex conve... Not Provided 2026-06-29 2026-06-30
CVE-2026-53429 json Missing Release of Memory after Effective Lifetime vulnerability in leandrocp mdex and mdex_native allows an attacker who con... Not Provided 2026-06-29 2026-06-30
CVE-2026-53428 json Memory Allocation with Excessive Size Value vulnerability in leandrocp mdex allows an unauthenticated attacker to cause a den... Not Provided 2026-06-29 2026-06-29
CVE-2026-53346 json In the Linux kernel, the following vulnerability has been resolved: rust: arm64: set uwtable llvm module flag for CONFIG_UNW... Not Provided 2026-07-01 2026-07-01
CVE-2026-52753 json Ghidra before 12.0.3 contains an out-of-memory vulnerability in the rust_demangle function that allocates unbounded output bu... Not Provided 2026-06-10 2026-06-10
CVE-2026-49991 json RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.4, authenticated users with only PutObject permiss... Not Provided 2026-06-26 2026-06-29

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationRust-langRust1.9.0
ApplicationRust-langRust1.8.0
ApplicationRust-langRust1.7.0
ApplicationRust-langRust1.6.0
ApplicationRust-langRust1.5.0
ApplicationRust-langRust1.46.0
ApplicationRust-langRust1.4.0
ApplicationRust-langRust1.34.2
ApplicationRust-langRust1.34.1
ApplicationRust-langRust1.34.0
ApplicationRust-langRust1.33.0
ApplicationRust-langRust1.32.0
ApplicationRust-langRust1.31.1
ApplicationRust-langRust1.31.0
ApplicationRust-langRust1.30.1
ApplicationRust-langRust1.30.0
ApplicationRust-langRust1.3.0
ApplicationRust-langRust1.29.2
ApplicationRust-langRust1.29.1
ApplicationRust-langRust1.29.0
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report