Bytecodealliance: >> Webassembly Micro Runtime >> 2.0.0 Security Vulnerabilities
A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause at least a denial of service via the "wasm_loader_check_br" function in core/iwasm/interpreter/wasm_loader.c.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-05-06
An out-of-bound memory read vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause a denial of service via the "block_type_get_arity" function in core/iwasm/interpreter/wasm.h.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-05-06