Home > Vulnerability Database > WS-2022-0049

Mend.io Vulnerability Database

WS-2022-0049

Date: August 19, 2025

In the affected version of this crate, {Iter, IterMut}::next used a weaker memory ordering when loading values than what was required, exposing a potential data race when iterating over a ThreadLocal's values. Crates using Iter::next, or IterMut::next are affected by this issue.

Language: RUST

Severity Score

8.1

Related Resources (5)

Url: https://github.com/Amanieu/thread_local-rs/issues/33

Url: https://github.com/Amanieu/thread_local-rs/commit/3d69afaab242fc1dd3a0658eb363b2df5e02fcd6

Url: https://rustsec.org/advisories/RUSTSEC-2022-0006.html

Url: https://crates.io/crates/thread_local

Url: https://www.mend.io/vulnerability-database/WS-2022-0049

Severity Score

8.1

Weakness Type (CWE)

Race Condition within a Thread

CWE-366

CVSS v3.1

Base Score:	8.1
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

WS-2022-0049

Date: August 19, 2025

Language: RUST

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?