Lucene search

CVE-2024-38358

🗓️ 19 Jun 2024 20:11:15Reported by GitHub_MType

Wasmer Runtime Vulnerability in Preopened Directory Symlink traversa

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
NVD	CVE-2024-38358	19 Jun 202420:15	–	nvd
Cvelist	CVE-2024-38358 Symlink bypasses filesystem sandbox in wasmer	19 Jun 202419:55	–	cvelist
Vulnrichment	CVE-2024-38358 Symlink bypasses filesystem sandbox in wasmer	19 Jun 202419:55	–	vulnrichment
OSV	CVE-2024-38358	19 Jun 202420:15	–	osv
OSV	CGA-VC44-Q5P6-VGWV	15 Jul 202422:07	–	osv
OSV	GHSA-55F3-3QVG-8PV5 Symlink bypasses filesystem sandbox	7 Jun 202419:40	–	osv
OSV	CGA-9CPP-Q87G-P8FW	21 Nov 202414:21	–	osv
Github Security Blog	Symlink bypasses filesystem sandbox	7 Jun 202419:40	–	github
Chainguard	CVE-2024-38358 vulnerabilities	19 Jun 202420:15	–	cgr
Wolfi	CVE-2024-38358 vulnerabilities	19 Jun 202420:15	–	wolfi

Vulners

Vulnrichment

Node

wasmerio wasmerRange<4.3.2

[
  {
    "vendor": "wasmerio",
    "product": "wasmer",
    "versions": [
      {
        "version": "< 4.3.2",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/wasmerio/wasmer/commit/b9483d022c602b994103f78ecfe46f017f8ac662
github	www.github.com/wasmerio/wasmer/security/advisories/GHSA-55f3-3qvg-8pv5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jun 2024 20:15Current

3.5Low risk

Vulners AI Score3.5

CVSS32.9

EPSS0.00035

SSVC

CWE-22