Vulnerabilities > Webassembly > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-01-10 CVE-2021-46050 Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen 103
A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function.
local
low complexity
webassembly CWE-770
5.5
2022-01-10 CVE-2021-46052 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate.
4.3
2022-01-10 CVE-2021-46053 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Webassembly Binaryen 103
A Denial of Service vulnerability exists in Binaryen 103.
4.3
2022-01-10 CVE-2021-46054 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).
4.3
2022-01-10 CVE-2021-46055 Reachable Assertion vulnerability in Webassembly Binaryen 104
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).
4.3
2021-12-21 CVE-2021-45293 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A Denial of Service vulnerability exists in Binaryen 103 due to an Invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet.
local
low complexity
webassembly fedoraproject CWE-119
5.5
2019-08-29 CVE-2019-15759 NULL Pointer Dereference vulnerability in Webassembly Binaryen
An issue was discovered in Binaryen 1.38.32.
4.3
2019-08-29 CVE-2019-15758 Reachable Assertion vulnerability in Webassembly Binaryen
An issue was discovered in Binaryen 1.38.32.
4.3
2019-02-10 CVE-2019-7704 Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen
wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.
4.3
2019-02-10 CVE-2019-7703 Use After Free vulnerability in Webassembly Binaryen
In Binaryen 1.38.22, there is a use-after-free problem in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp.
4.3