An issue was discovered in the raw-cpuid crate before 9.1.1 for Rust. If the serialize feature is used (which is not the the default), a Deserialize operation may lack sufficient validation, leading to memory corruption or a panic.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| raw-cpuid(crates.io) | 3.1.0 | 9.1.1 | N/A |
CVSS Metrics
