Vulnerabilities > CVE-2020-18378 - NULL Pointer Dereference vulnerability in Webassembly Binaryen 1.38.26
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A NULL pointer dereference was discovered in SExpressionWasmBuilder::makeBlock in wasm/wasm-s-parser.c in Binaryen 1.38.26. A crafted wasm input can cause a segmentation fault, leading to denial-of-service, as demonstrated by wasm-as.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |