{"id":"CVE-2018-25025","details":"An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.","aliases":["CVE-2018-25024","CVE-2018-25026","GHSA-7x36-h62w-vw65","GHSA-9qj6-4rfq-vm84","GHSA-fgfm-hqjw-3265","GHSA-w65j-g6c7-g3m4","RUSTSEC-2018-0019"],"modified":"2026-03-14T09:29:17.773466Z","published":"2021-12-27T00:15:08.033Z","references":[{"type":"ADVISORY","url":"https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md"},{"type":"REPORT","url":"https://rustsec.org/advisories/RUSTSEC-2018-0019.html"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"0.7.15"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-25025.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}