crates.io Package Vulnerabilities
All 559 Rust crates with known CVEs, ranked by live CVE volume — 1,019 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 501.tendermint-light-client-js1 CVE
- 502.tendermint-light-client-verifier1 CVE
- 503.thex1 CVE
- 504.thin-vec1 CVE
- 505.thread-amount1 CVE
- 506.thrift1 CVE
- 507.through1 CVE
- 508.ticketed_lock1 CVE
- 509.tiny_future1 CVE
- 510.tiny_http1 CVE
- 511.tls-listener1 CVE
- 512.tokio-boring1 CVE
- 513.tokio-rustls1 CVE
- 514.tokio-tar1 CVE
- 515.tonic1 CVE
- 516.toolshed1 CVE
- 517.totp-rs1 CVE
- 518.tracing-subscriber1 CVE
- 519.tract-nnef1 CVE
- 520.tract-onnx1 CVE
- 521.trailer1 CVE
- 522.traitobject1 CVE
- 523.transpose1 CVE
- 524.trillium-client1 CVE
- 525.trillium-http1 CVE
- 526.truetype1 CVE
- 527.trust-dns-proto1 CVE
- 528.trust-dns-server1 CVE
- 529.try-mutex1 CVE
- 530.tungstenite1 CVE
- 531.twitch-tui1 CVE
- 532.unbounded-spsc1 CVE
- 533.unicycle1 CVE
- 534.untrusted1 CVE
- 535.users1 CVE
- 536.uu_od1 CVE
- 537.v91 CVE
- 538.va-ts1 CVE
- 539.vec-const1 CVE
- 540.versionize1 CVE
- 541.vmm-sys-util1 CVE
- 542.vproxy1 CVE
- 543.wasmer1 CVE
- 544.wasmer-cli1 CVE
- 545.webbrowser1 CVE
- 546.webp1 CVE
- 547.web-push1 CVE
- 548.websocket1 CVE
- 549.wgp1 CVE
- 550.ws1 CVE
Which crates.io packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →