{"id":"CVE-2020-25575","details":"An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce \"compatibility hazards\" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: This may overlap CVE-2019-25010","aliases":["CVE-2019-25010","GHSA-jq66-xh47-j9f3","GHSA-r98r-j25q-rmpr","RUSTSEC-2019-0036","RUSTSEC-2020-0036"],"modified":"2026-05-28T04:05:50.914279455Z","published":"2020-09-14T19:15:11.397Z","database_specific":{"unresolved_ranges":[{"cpes":["cpe:2.3:a:failure_project:failure:*:*:*:*:*:rust:*:*"],"vendor_product":"failure_project:failure","source":"CPE_RANGE","extracted_events":[{"last_affected":"0.1.8"}]}]},"references":[{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2020-0036.html"},{"type":"FIX","url":"https://github.com/rust-lang-nursery/failure/issues/336"},{"type":"EVIDENCE","url":"https://boats.gitlab.io/blog/post/failure-to-fehler/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/rust-lang-deprecated/failure","events":[{"introduced":"0"},{"fixed":"65c825aeaa6b07a51e4fb1d824625485061604f4"}],"database_specific":{"source":"DESCRIPTION","extracted_events":[{"introduced":"0"},{"fixed":"0.1.5"}]}}],"versions":["0.1.4","0.1.3"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-25575.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}