Vulnerabilities > Webassembly > Binaryen

DATE CVE VULNERABILITY TITLE RISK
2023-08-22 CVE-2020-18378 NULL Pointer Dereference vulnerability in Webassembly Binaryen 1.38.26
A NULL pointer dereference was discovered in SExpressionWasmBuilder::makeBlock in wasm/wasm-s-parser.c in Binaryen 1.38.26.
network
low complexity
webassembly CWE-476
6.5
2023-08-22 CVE-2020-18382 Out-of-bounds Write vulnerability in Webassembly Binaryen 1.38.26
Heap-buffer-overflow in /src/wasm/wasm-binary.cpp in wasm::WasmBinaryBuilder::visitBlock(wasm::Block*) in Binaryen 1.38.26.
network
low complexity
webassembly CWE-787
6.5
2022-01-10 CVE-2021-46048 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::readFunctions.
4.3
2022-01-10 CVE-2021-46050 Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen 103
A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function.
local
low complexity
webassembly CWE-770
5.5
2022-01-10 CVE-2021-46052 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate.
4.3
2022-01-10 CVE-2021-46053 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Webassembly Binaryen 103
A Denial of Service vulnerability exists in Binaryen 103.
4.3
2022-01-10 CVE-2021-46054 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).
4.3
2022-01-10 CVE-2021-46055 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).
4.3
2021-12-21 CVE-2021-45290 Reachable Assertion vulnerability in multiple products
A Denial of Service vulnerability exits in Binaryen 103 due to an assertion abort in wasm::handle_unreachable.
network
low complexity
webassembly fedoraproject CWE-617
7.5
2021-12-21 CVE-2021-45293 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A Denial of Service vulnerability exists in Binaryen 103 due to an Invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet.
local
low complexity
webassembly fedoraproject CWE-119
5.5