crates.io Package Vulnerabilities
All 559 Rust crates with known CVEs, ranked by live CVE volume — 1,019 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 451.russh-cryptovec1 CVE
- 452.rust-embed1 CVE
- 453.rustix1 CVE
- 454.safe-transmute1 CVE
- 455.sccache1 CVE
- 456.scim_proto1 CVE
- 457.scottqueue1 CVE
- 458.scratchpad1 CVE
- 459.scsir1 CVE
- 460.sd1 CVE
- 461.security-framework1 CVE
- 462.serde_cbor1 CVE
- 463.serde-json-wasm1 CVE
- 464.serde_v81 CVE
- 465.sha21 CVE
- 466.shamefile1 CVE
- 467.shlex1 CVE
- 468.signal-simple1 CVE
- 469.simd-json1 CVE
- 470.simple_asn11 CVE
- 471.slab1 CVE
- 472.slock1 CVE
- 473.smallbitvec1 CVE
- 474.snow1 CVE
- 475.soroban-fixed-point-math1 CVE
- 476.soroban-poseidon1 CVE
- 477.soroban-sdk1 CVE
- 478.sp1_prover1 CVE
- 479.sp1_recursion_circuit1 CVE
- 480.sp1_sdk1 CVE
- 481.spin1 CVE
- 482.spin-sdk1 CVE
- 483.spytrap-adb1 CVE
- 484.sqlite-vec1 CVE
- 485.sqlpage1 CVE
- 486.stack1 CVE
- 487.stackvector1 CVE
- 488.starship1 CVE
- 489.stellar-strkey1 CVE
- 490.string-interner1 CVE
- 491.SurrealDB1 CVE
- 492.svix1 CVE
- 493.syncpool1 CVE
- 494.sys-info1 CVE
- 495.Tauri1 CVE
- 496.tauri-cli1 CVE
- 497.tauri-plugin-shell1 CVE
- 498.tectonic_xdv1 CVE
- 499.telemetry1 CVE
- 500.tendermint-light-client1 CVE
Which crates.io packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →