Rust
Mend SAST-supported Rust file types
File Type |
|---|
.rs |
.tom |
Mend SAST-supported Rust frameworks
Framework |
|---|
Actix |
Axum |
Poem |
Rocket |
Salvo |
Tide |
Warp |
Rust high-severity vulnerability types
CWE | Vulnerability Type |
CWE-22 | Path Traversal |
CWE-78 | Command Injection |
CWE-79 | Cross-Site Scripting |
CWE-89 | SQL Injection |
CWE-94 | Code Injection |
CWE-502 | Deserialization of Untrusted Data |
CWE-643 | XPath Injection |
CWE-918 | Server Side Request Forgery (SSRF) |
CWE-943 | NoSQL Injection |
Rust medium-severity vulnerability types
CWE | Vulnerability Type |
CWE-90 | LDAP Injection |
CWE-295 | Insecure TLS Configuration |
CWE-327 | Insecure Cryptographic Algorithm |
CWE-330 | Insufficiently Random Values |
CWE-347 | Improper Verification of JWT Signature |
CWE-606 | Loop Denial of Service |
CWE-676 | Use of Potentially Dangerous Function |
CWE-798 | Hardcoded Password/Credentials |
Rust low-severity vulnerability types
CWE | Vulnerability Type |
CWE-328 | Weak Hash Strength |
CWE-369 | Divide By Zero |
CWE-601 | Unvalidated/Open Redirect |
CWE-614 | Sensitive Cookie Without 'Secure' Attribute |
CWE-789 | Uncontrolled Memory Allocation |
CWE-942 | Origin Validation Error |
CWE-1004 | Cookie Without ‘HttpOnly’ Flag |