Vulnerabilities > Bytecodealliance > Webassembly Micro Runtime > 1.1.1

DATE CVE VULNERABILITY TITLE RISK
2024-11-08 CVE-2024-25431 Out-of-bounds Read vulnerability in Bytecodealliance Webassembly Micro Runtime
An issue in bytecodealliance wasm-micro-runtime before v.b3f728c and fixed in commit 06df58f allows a remote attacker to escalate privileges via a crafted file to the check_was_abi_compatibility function.
local
low complexity
bytecodealliance CWE-125
7.8
2023-12-31 CVE-2023-52284 Double Free vulnerability in Bytecodealliance Webassembly Micro Runtime
Bytecode Alliance wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) before 1.3.0 can have an "double free or corruption" error for a valid WebAssembly module because push_pop_frame_ref_offset is mishandled.
local
low complexity
bytecodealliance CWE-415
5.5