Rust is a multi-paradigm programming language focused on performance and safety, especially safe concurrency.

Rust

Wolfi is a community Linux OS designed for the container and cloud-native era; it is a Linux distribution based on Alpine.

Wolfi

Chainguard is a Linux distribution based on Alpine. It's the commercial version of the Wolfi distro.

Chainguard

Debian GNU/Linux is a Linux distribution composed of free and open-source software.

Linux Debian

Red Hat Enterprise Linux is a Linux distribution developed by Red Hat for the commercial market.

Linux Red Hat

Echo is a secure, minimal Linux OS built vulnerability-free. It is fully compatible across environments and continuously patched - making it a clean, dependable base layer for modern applications. Echo is used by organizations focused on security and reliability, including those with compliance or FIPS requirements.

Echo

In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-65807	HIGH	8.4	Rust	rust-sd	No	No	Dec 10, 2025
CVE-2025-66627	HIGH	7.8	Rust	wasmi	No	Yes	Dec 09, 2025
CVE-2025-67487	MEDIUM	5.5	Rust	static-web-server	No	Yes	Dec 09, 2025
CVE-2025-67897	MEDIUM	5.3	Rust	rust-sequoia-sq	No	Yes	Dec 14, 2025
RUSTSEC-2025-0137	N/A	N/A	Rust	ruint	No	No	Dec 22, 2025

CVE-2025-67897:
Rust vulnerability analysis and mitigation

5.3

Related Rust vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-67897: Rust vulnerability analysis and mitigation