Nanorand ProjectCVEs & Vulnerabilities
2 CVEs affecting Nanorand Project products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
nanorand 2
CVE-2021-45705CRITICAL
An issue was discovered in the nanorand crate before 0.6.1 for Rust. There can be multiple mutable references to the same object because the TlsWyRand Deref implementation dereferences a raw pointer.
27 Dec 2021
9.8
CVSS
CVE-2020-35926CRITICAL
An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all zeroes because integer truncation was mishandled.
31 Dec 2020
9.8
CVSS
← PrevPage 1 / 1Next →