CVE-2019-16137

{"id": "CVE-2019-16137", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-09-09T12:15:10.647", "references": [{"url": "https://rustsec.org/advisories/RUSTSEC-2019-0013.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://rustsec.org/advisories/RUSTSEC-2019-0013.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-662"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en la caja giratoria anterior de la versi\u00f3n 0.5.2 para Rust, cuando se usa RwLock. Debido a que el ordenamiento de la memoria se maneja mal, dos escritores pueden adquirir el bloqueo al mismo tiempo, violando la exclusi\u00f3n mutua."}], "lastModified": "2024-11-21T04:30:07.313", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:spin-rs_project:spin-rs:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B37DF562-784F-4BB9-A78E-8A21F36C0F4A", "versionEndExcluding": "0.5.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}