cvedb.io
CVE-2025-48756
LOW · CVSS 2.9
EPSS exploitation probability: 0%
Published 2025-05-24T03:15:24.363 · Last modified 2026-06-17T09:30:17.173

Summary

In group_number in the scsir crate 0.2.0 for Rust, there can be an overflow because a hardware device may expect a small number of bits (e.g., 5 bits) for group number.

Affected products

crates — scsir

Does this affect you?

Add your gear to cvedb and we'll alert you only when crates ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.