CVEbaza.plCWE DictionaryCWE-695
Common Weakness Enumeration

CWE-695

Use of Low-Level Functionality

Category: BaseCVE: 1
Description

The product uses low-level functionality that is explicitly prohibited by the framework or specification under which the product is supposed to operate.

Extended Description

The use of low-level functionality can violate the specification in unexpected ways that effectively disable built-in protection mechanisms, introduce exploitable inconsistencies, or otherwise expose the functionality to attack.

CVE vulnerabilities with CWE-695 (1)
9.4
CVSS
CRITICAL
CVE-2026-30960

rssn is a scientific computing library for Rust, combining a high-performance symbolic computation engine with numerical methods support and physics simulations functionalities. The vulnerability exists in the JIT (Just-In-Time) compilation engine, which is fully exposed via the CFFI (Foreign Function Interface). Due to Improper Input Validation and External Control of Code Generation, an attacker can supply malicious parameters or instruction sequences through the CFFI layer. Since the library often operates with elevated privileges or within high-performance computing contexts, this allows for Arbitrary Code Execution (ACE) at the privilege level of the host process.

pub. 2026-03-10
Information
ID: CWE-695
Type: Base
Vulnerabilities: 1
MITRE CWE ↗
← CWE Dictionary