Vulnerabilities > Webassembly

DATE CVE VULNERABILITY TITLE RISK
2021-12-21 CVE-2021-45290 Reachable Assertion vulnerability in multiple products
A Denial of Service vulnerability exits in Binaryen 103 due to an assertion abort in wasm::handle_unreachable.
network
low complexity
webassembly fedoraproject CWE-617
7.5
2021-12-21 CVE-2021-45293 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A Denial of Service vulnerability exists in Binaryen 103 due to an Invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet.
local
low complexity
webassembly fedoraproject CWE-119
5.5
2019-08-29 CVE-2019-15759 NULL Pointer Dereference vulnerability in Webassembly Binaryen
An issue was discovered in Binaryen 1.38.32.
network
low complexity
webassembly CWE-476
6.5
2019-08-29 CVE-2019-15758 Reachable Assertion vulnerability in Webassembly Binaryen
An issue was discovered in Binaryen 1.38.32.
network
low complexity
webassembly CWE-617
6.5
2019-02-10 CVE-2019-7704 Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen
wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.
network
low complexity
webassembly CWE-770
6.5
2019-02-10 CVE-2019-7703 Use After Free vulnerability in Webassembly Binaryen
In Binaryen 1.38.22, there is a use-after-free problem in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp.
network
low complexity
webassembly CWE-416
6.5
2019-02-10 CVE-2019-7702 NULL Pointer Dereference vulnerability in Webassembly Binaryen
A NULL pointer dereference was discovered in wasm::SExpressionWasmBuilder::parseExpression in wasm-s-parser.cpp in Binaryen 1.38.22.
network
low complexity
webassembly CWE-476
6.5
2019-02-10 CVE-2019-7701 Out-of-bounds Read vulnerability in Webassembly Binaryen
A heap-based buffer over-read was discovered in wasm::SExpressionParser::skipWhitespace() in wasm-s-parser.cpp in Binaryen 1.38.22.
network
low complexity
webassembly CWE-125
6.5
2019-02-10 CVE-2019-7700 Out-of-bounds Read vulnerability in Webassembly Binaryen
A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp in Binaryen 1.38.22.
network
low complexity
webassembly CWE-125
6.5
2019-02-09 CVE-2019-7662 Reachable Assertion vulnerability in Webassembly Binaryen
An assertion failure was discovered in wasm::WasmBinaryBuilder::getType() in wasm-binary.cpp in Binaryen 1.38.22.
network
low complexity
webassembly CWE-617
6.5