Summary
| Detail | |||
|---|---|---|---|
| Vendor | wasm3 Project | First view | 2021-08-12 |
| Product | wasm3 | Last view | 2025-06-19 |
| Version | Type | Application | |
| Update | |||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:2.3:a:wasm3_project:wasm3:0.5.0:*:*:*:*:*:*:* | 12 |
| cpe:2.3:a:wasm3_project:wasm3:139076a:*:*:*:*:*:*:* | 4 |
| cpe:2.3:a:wasm3_project:wasm3:2022-08-28:*:*:*:*:*:*:* | 1 |
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 0 | 2025-06-19 | CVE-2025-6272 | A vulnerability has been found in wasm3 0.5.0 and classified as problematic. This vulnerability affects the function MarkSlotAllocated of the file source/m3_compile.c. The manipulation leads to out-of-bounds write. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. |
| 0 | 2024-11-08 | CVE-2024-27530 | wasm3 139076a contains a Use-After-Free in ForEachModule. |
| 0 | 2024-11-08 | CVE-2024-27529 | wasm3 139076a contains memory leaks in Read_utf8. |
| 0 | 2024-11-08 | CVE-2024-27528 | wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution. |
| 0 | 2024-11-08 | CVE-2024-27527 | wasm3 139076a is vulnerable to Denial of Service (DoS). |
| 0 | 2024-05-06 | CVE-2024-34252 | wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault via the function "PreserveRegisterIfOccupied" in wasm3/source/m3_compile.c. |
| 0 | 2024-05-06 | CVE-2024-34249 | wasm3 v0.5.0 was discovered to contain a heap buffer overflow which leads to segmentation fault via the function "DeallocateSlot" in wasm3/source/m3_compile.c. |
| 0 | 2024-05-06 | CVE-2024-34246 | wasm3 v0.5.0 was discovered to contain an out-of-bound memory read which leads to segmentation fault via the function "main" in wasm3/platforms/app/main.c. |
| 5.5 | 2022-12-13 | CVE-2022-44874 | wasm3 commit 7890a2097569fde845881e0b352d813573e371f9 was discovered to contain a segmentation fault via the component op_CallIndirect at /m3_exec.h. |
| 7.5 | 2022-09-20 | CVE-2022-39974 | WASM3 v0.5.0 was discovered to contain a segmentation fault via the component op_Select_i32_srs in wasm3/source/m3_exec.h. |
| 5.5 | 2022-07-27 | CVE-2022-34529 | WASM3 v0.5.0 was discovered to contain a segmentation fault via the component Compile_Memory_CopyFill. |
| 7.8 | 2022-05-20 | CVE-2022-28990 | WASM3 v0.5.0 was discovered to contain a heap overflow via the component /wabt/bin/poc.wasm. |
| 5.5 | 2022-04-16 | CVE-2022-28966 | Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirectly from Compile_BranchTable in m3_compile.c). |
| 5.5 | 2022-01-01 | CVE-2021-45947 | Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and InitDataSegments). |
| 5.5 | 2022-01-01 | CVE-2021-45946 | Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and CompileBlockStatements). |
| 5.5 | 2022-01-01 | CVE-2021-45929 | Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from CompileElseBlock and Compile_If). |
| 7.5 | 2021-08-12 | CVE-2021-38592 | Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule). |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 77% (7) | CWE-787 | Out-of-bounds Write |
| 11% (1) | CWE-125 | Out-of-bounds Read |
| 11% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
