Security Vulnerabilities - CVEs Published In November 2024
vmir e8117 was discovered to contain a segmentation violation via the import_function function at /src/vmir_wasm_parser.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-11-08
vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse function at /src/vmir_function.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-11-08
wasm3 139076a is vulnerable to Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2024-11-08
wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-08
wasm3 139076a contains memory leaks in Read_utf8.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-11-08
wasm3 139076a contains a Use-After-Free in ForEachModule.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-08
wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer Dereference in function `block_type_get_result_types.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-11-08
wac commit 385e1 was discovered to contain a heap overflow via the interpret function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-11-08
wac commit 385e1 was discovered to contain a heap overflow via the setup_call function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.
CVSS Score
6.2
EPSS Score
0.002
Published
2024-11-08
wac commit 385e1 was discovered to contain a heap overflow via the load_module function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-11-08