CVE-2018-20998

CRITICAL

arrayfire < 3.6.0 - Memory Corruption via Enum repr() Attribute Mishandling

Title source: llm
STIX 2.1

Description

An issue was discovered in the arrayfire crate before 3.6.0 for Rust. Addition of the repr() attribute to an enum is mishandled, leading to memory corruption.

References (1)

Core 1
Core References
Third Party Advisory x_refsource_misc
https://rustsec.org/advisories/RUSTSEC-2018-0011.html

Scores

CVSS v3 9.8
EPSS 0.0164
EPSS Percentile 73.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (3)
arrayfire/arrayfire < 3.6.0
crates.io/arrayfire 0 - 3.6.0crates.io
pypi/arrayfire 0 - 3.6.0PyPI
Published Aug 26, 2019
Tracked Since Feb 18, 2026