CVE-2024-12224 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a…
Medium CVSS: 5.1

CVE-2024-12224

Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.
Vendor
Servo
Product
Idna
CWE
CWE-1289
Yayın Tarihi
2025-05-30 02:15:19
Güncelleme
2025-06-25 15:33:17
Source Identifier
security@mozilla.org
KEV Date Added
-

Kategoriler

CWE-1289 Idna MEDIUM Servo 2025

Referanslar

https://bugzilla.mozilla.org/show_bug.cgi?id=1887898 https://rustsec.org/advisories/RUSTSEC-2024-0421.html https://bugzilla.mozilla.org/show_bug.cgi?id=1887898