Crossbeam Project Crossbeam — known CVE vulnerabilities
Every CVE whose affected-product data names Crossbeam Project Crossbeam, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-20996 — CVSS 9.8 (critical): An issue was discovered in the crossbeam crate before 0.4.1 for Rust. There is a double free because of destructor mishandling.
CVE-2021-32810 — CVSS 9.8 (critical): crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and…
CVE-2020-15254 — CVSS 8.1 (high): Crossbeam is a set of tools for concurrent programming. In crossbeam-channel before version 0.4.4, the bounded channel incorrectly assumes…
CVE-2022-23639 — CVSS 8.1 (high): crossbeam-utils provides atomics, synchronization primitives, scoped threads, and other utilities for concurrent programming in Rust…