Lucene search
HistoryNov 22, 2023 - 11:15 p.m.
CVE-2023-48105
security
vulnerability
heap overflow
wasm-micro-runtime
denial of service
nvd
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
32.3%
An heap overflow vulnerability was discovered in Bytecode alliance wasm-micro-runtime v.1.2.3 allows a remote attacker to cause a denial of service via the wasm_loader_prepare_bytecode function in core/iwasm/interpreter/wasm_loader.c.
Affected configurations
Node
bytecodealliancewebassembly_micro_runtimeMatch1.2.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| bytecodealliance:webassembly_micro_runtime | bytecodealliance webassembly micro runtime | eq | 1.2.3 |
Related
osv
osv
CVE-2023-48105
2023-11-22 23:15:10
cbl_mariner
cbl_mariner
CVE-2023-48105 affecting package fluent-bit for versions less than 2.1.10-2
2023-12-14 16:52:36
nvd
nvd
CVE-2023-48105
2023-11-22 23:15:10
prion
prion
Heap overflow
2023-11-22 23:15:00
cvelist
cvelist
CVE-2023-48105
2023-11-22 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
32.3%
Related for CVE-2023-48105