Home > Vulnerability Database > WS-2020-0453

Mend.io Vulnerability Database

WS-2020-0453

Date: August 19, 2025

In pnet_packet before 0.27.2, a buffer overrun is possible in the set_payload setter of the various mutable "Packet" struct setters. The offending set_payload functions were defined within the struct impl blocks in earlier versions of the package, and later by the packet macro.

Language: RUST

Severity Score

6.0

Related Resources (6)

Url: https://github.com/libpnet/libpnet

Url: https://crates.io/crates/pnet_packet

Url: https://github.com/libpnet/libpnet/commit/dde31d26fd7b8ea23fbcb2928583a7882748e653

Url: https://rustsec.org/advisories/RUSTSEC-2020-0167.html

Url: https://github.com/libpnet/libpnet/issues/449

Url: https://www.mend.io/vulnerability-database/WS-2020-0453

Severity Score

6.0

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119

CVSS v3.1

Base Score:	6.0
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	HIGH
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

WS-2020-0453

Date: August 19, 2025

Language: RUST

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?