Vulnerabilities > CVE-2023-52284 - Double Free vulnerability in Bytecodealliance Webassembly Micro Runtime 1.2.3
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
Bytecode Alliance wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) before 1.3.0 can have an "double free or corruption" error for a valid WebAssembly module because push_pop_frame_ref_offset is mishandled.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |