CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-48105

An heap overflow vulnerability was discovered in Bytecode alliance wasm-micro-runtime v.1.2.3 allows a remote attacker to cause a denial of service via the wasm_loader_prepare_bytecode function in core/iwasm/interpreter/wasm_loader.c.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.8%

CVSS Severity

CVSS v3 Score 7.5

References

http://bytecode.com
http://wasm-micro-runtime.com
https://github.com/bytecodealliance/wasm-micro-runtime/issues/2726
https://github.com/bytecodealliance/wasm-micro-runtime/pull/2734/commits/4785d91b16dd49c09a96835de2d9c7b077543fa4
http://bytecode.com
http://wasm-micro-runtime.com
https://github.com/bytecodealliance/wasm-micro-runtime/issues/2726
https://github.com/bytecodealliance/wasm-micro-runtime/pull/2734/commits/4785d91b16dd49c09a96835de2d9c7b077543fa4

Products affected by CVE-2023-48105

Bytecodealliance » Webassembly Micro Runtime » Version: 1.2.3

cpe:2.3:a:bytecodealliance:webassembly_micro_runtime:1.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48105

Products

Pricing

Contact Us