-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| rulex | rust | < 0.4.3 | 0.4.3 |
RustRustMiggo AIRoot Cause AnalysisThe commit diff shows critical fixes in these two functions where UTF-8 handling was incorrect. Both functions: 1) Used naive 1-byte-per-character assumptions (via [1..] slicing or input.len() checks) 2) Were patched by introducing len_utf8() to handle multi-byte characters 3) Are directly involved in parsing string literals and backslash escapes as described in the vulnerability impact. The test cases added in the commit specifically target these UTF-8 parsing scenarios.