CVE-2024-58253

{"id": "CVE-2024-58253", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.9, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 1.4}]}, "published": "2025-05-02T20:15:19.793", "references": [{"url": "https://github.com/CasualX/obfstr/compare/v0.4.3...v0.4.4", "source": "cve@mitre.org"}, {"url": "https://github.com/CasualX/obfstr/issues/60", "source": "cve@mitre.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "cve@mitre.org", "description": [{"lang": "en", "value": "CWE-843"}]}], "descriptions": [{"lang": "en", "value": "In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value."}, {"lang": "es", "value": "Obfstr crate anterior a la versi\u00f3n 0.4.4 para Rust, el tipo de argumento obfstr! no est\u00e1 restringido a segmentos de cadena, lo que genera una conversi\u00f3n UTF-8 no v\u00e1lida que produce un valor no v\u00e1lido."}], "lastModified": "2025-05-05T20:54:19.760", "sourceIdentifier": "cve@mitre.org"}