CNNVD-202510-048 Information

CNNVD ID

CNNVD-202510-048

Related CVE

CVE-2025-11233

• CNNVD Published: 2025-10-01

Description (Chinese)

Rust是美国Mozilla基金会的一款通用、编译型编程语言。 Rust 1.87.0版本至1.89.0之前版本存在安全漏洞，该漏洞源于路径分隔符处理不当，可能导致路径遍历攻击或恶意文件系统操作。

Description (English)

Rust is a common, compiled programming language for the Mozilla Foundation in the United States. Rust 1.87.0 to 1.89.0 had a security loophole, which stemmed from the inappropriate handling of the path separator, which could lead to a path attack or malicious document system operation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mozilla

Published

2025-10-01

Last Modified

2026-02-24

References

https://github.com/rust-lang/rust/pull/141864 https://groups.google.com/g/rustlang-security-announcements/c/oT9zCvLLYkw