Vulnerability Details CVE-2018-17293
An issue was discovered in WAVM before 2018-09-16. The run function in Programs/wavm/wavm.cpp does not check whether there is Emscripten memory to store the command-line arguments passed by the input WebAssembly file's main function, which allows attackers to cause a denial of service (application crash by NULL pointer dereference) or possibly have unspecified other impact by crafting certain WebAssembly files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
Products affected by CVE-2018-17293
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-02-10
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-02-28
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-03-08
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-03-13
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-03-27
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-03-28
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-03
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-04
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-19
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-20
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-22
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-24
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-04-26
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-05-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-05-05
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-05-17
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-05-18
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-05-29
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-07
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-09
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-18
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-19
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-20
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-23
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-28
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-06-29
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-08-29
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-09-07
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-10-29
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-10-30
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-11-01
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-11-09
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-11-27
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-1116
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-03
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-04
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-05
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-06
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-08
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2017-12-26
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-01-12
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-01-13
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-02-12
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-06
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-07
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-08
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-09
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-13
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-03-21
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-04-03
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-04-04
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-04-19
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-04-21
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-01
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-06
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-07
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-10
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-11
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-15
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-23
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-05-31
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-06-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-06-05
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-06-14
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-07-25
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-07-26
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-07-27
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-04
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-06
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-08
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-14
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-15
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-16
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-17
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-18
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-20
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-21
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-22
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-23
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-24
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-25
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-26
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-27
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-29
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-30
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-08-31
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-01
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-02
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-04
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-05
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-06
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-07
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-08
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-09
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-10
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-11
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-12
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-13
-
cpe:2.3:a:webassembly_virtual_machine_project:webassembly_virtual_machine:2018-09-14