An issue was discovered in the parse_duration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service (CPU and memory consumption) via a duration string with a large exponent.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| parse_duration(crates.io) | 0 | N/A | N/A |
CVSS Metrics
