Lucene search
K

95 matches found

CVE
CVE
added 2024/06/19 7:55 p.m.279 views

CVE-2024-38358

Wasmer (a WASM runtime) is affected by CVE-2024-38358 due to a bug where preopened directories containing a symlink pointing outside can be exploited to traverse the symlink and access the host filesystem if the caller uses both oflags::creat and rights::fd_write. The issue can also crash the run...

2.9CVSS3.5AI score0.002EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/06/07 7:40 p.m.31 views

Symlink bypasses filesystem sandbox

Summary If the preopened directory has a symlink pointing outside, WASI programs can traverse the symlink and access host filesystem if the caller sets both oflags::creat and rights::fdwrite. Programs can also crash the runtime by creating a symlink pointing outside with pathsymlink and pathopeni...

2.9CVSS7AI score0.002EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/06/07 7:40 p.m.16 views

GHSA-55F3-3QVG-8PV5 Symlink bypasses filesystem sandbox

Summary If the preopened directory has a symlink pointing outside, WASI programs can traverse the symlink and access host filesystem if the caller sets both oflags::creat and rights::fdwrite. Programs can also crash the runtime by creating a symlink pointing outside with pathsymlink and pathopeni...

2.9CVSS3.5AI score0.002EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2024/04/06 12:0 p.m.3 views

blind-rsa-signatures (=0.9.0), cyfs-base (>=0.5.0 <=0.6.12) +6 more potentially affected by unknown CVE via rsa-export (>=0.1.2 <=0.3.3)

rsa-export CARGO version =0.1.2, =0.5.0, =0.5.0, =0.2.7, =0.1.2, =0.1.4 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0333...

5.8AI score
Exploits0
Hacker One
Hacker One
added 2023/07/25 7:48 p.m.12 views

Node.js: WASI sandbox escape via symlink

A WASI + WASM program was discovered to be able to use pathsymlink to read arbitrary files on the host machine by creating a symlink in a preopen to a different location on the local file system, thereby escaping the WASI sandbox...

7.1AI score
Exploits0
vulnersOsv
vulnersOsv
added 2022/11/10 9:16 p.m.5 views

auto-wasi (=0.1.0), candid-extractor (>=0.1.0 <=0.1.2) +99 more potentially affected by CVE-2022-39393 via wasmtime (>=0.10.0 <=12.0.2)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.5.0, =0.0.1-alpha, =0.40.1, =0.45.0, =0.1.0, =0.3.0 - inkpad-executor =0.1.0 and more Source cves: CVE-2022-39393 Source advisory: OSV:GHSA-WH6W-3828-G9QF...

8.6CVSS7.5AI score0.00657EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/11/05 12:0 p.m.4 views

auto-wasi (=0.1.0), candid-extractor (>=0.1.0 <=0.1.2) +99 more potentially affected by CVE-2022-39392 via wasmtime (>=0.10.0 <=12.0.2)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.5.0, =0.0.1-alpha, =0.40.1, =0.45.0, =0.1.0, =0.3.0 - inkpad-executor =0.1.0 and more Source cves: CVE-2022-39392 Source advisory: OSV:RUSTSEC-2022-0102...

7.4CVSS7.2AI score0.00577EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/11/05 12:0 p.m.5 views

auto-wasi (=0.1.0), candid-extractor (>=0.1.0 <=0.1.2) +99 more potentially affected by CVE-2022-39393 via wasmtime (>=0.10.0 <=12.0.2)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.5.0, =0.0.1-alpha, =0.40.1, =0.45.0, =0.1.0, =0.3.0 - inkpad-executor =0.1.0 and more Source cves: CVE-2022-39393 Source advisory: OSV:RUSTSEC-2022-0098...

8.6CVSS7.5AI score0.00657EPSS
Exploits0
OSV
OSV
added 2022/09/20 8:45 p.m.22 views

GHSA-CMR8-5W4C-44V8 Fastly Compute@Edge JS Runtime has fixed random number seed during compilation

Impact Math.random and crypto.getRandomValues methods failed to use sufficiently random values. The initial value to seed the CSPRNG cryptographically secure pseudorandom number generator was baked-in to the final WebAssembly module meaning the sequence of numbers generated was predictable for th...

7.5CVSS7.3AI score0.00773EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/09/20 8:45 p.m.31 views

Fastly Compute@Edge JS Runtime has fixed random number seed during compilation

Impact Math.random and crypto.getRandomValues methods failed to use sufficiently random values. The initial value to seed the CSPRNG cryptographically secure pseudorandom number generator was baked-in to the final WebAssembly module meaning the sequence of numbers generated was predictable for th...

7.5CVSS7.1AI score0.00773EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2022/07/20 10:47 p.m.4 views

deterministic-wasi-ctx (=0.1.3), enarx (>=0.5.0 <=0.5.1) +8 more potentially affected by CVE-2022-31146 via wasmtime (=0.37.0)

wasmtime CARGO version =0.37.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - deterministic-wasi-ctx =0.1.3 - enarx =0.5.0, =0.5.1 - enarx-exec-wasmtime =0.5.1 - wasi-tokio =0.37.0 - wasmtime-cli-flags =0.37.0 -...

8.8CVSS7.2AI score0.00856EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/07/12 12:0 p.m.4 views

auto-wasi (=0.1.0), ceres-executor (>=0.1.0 <=0.2.0) +79 more potentially affected by CVE-2022-31146 via wasmtime (>=0.10.0 <=0.37.0)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.40.1, =0.45.0, =0.1.0, =0.1.0, =0.1.0, =0.1.7 - lunatic-common-api =0.9.0 and more Source cves: CVE-2022-31146 Source advisory: OSV:RUSTSEC-2022-0100...

8.8CVSS7.6AI score0.00856EPSS
Exploits0
CNVD
CNVD
added 2022/04/02 12:0 a.m.15 views

Wasmtime Resource Management Error Vulnerability

Wasmtime, a Bytecode Consortium project, is a standalone wasm-optimized runtime for WebAssembly and WASI only. a resource management error vulnerability exists in Wasmtime, which stems from the fact that when running Wasm with externrefs and epoch interrupts are enabled in Wasmtime, a use after...

9.8CVSS1.4AI score0.01137EPSS
Exploits0References1
Prion
Prion
added 2022/02/16 10:15 p.m.11 views

Default configuration

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

7.1CVSS8AI score0.00772EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/02/16 10:0 p.m.94 views

CVE-2022-23636

CVE-2022-23636 affects Wasmtime prior to 0.34.1 and 0.33.1, due to a bug in the pooling instance allocator that can cause an invalid drop of a VMExternRef when a module defines an externref global and instance creation fails. The vulnerability depends on specific conditions (e.g., mprotect/Virtua...

8.1CVSS6.5AI score0.00772EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/02/16 10:0 p.m.37 views

CVE-2022-23636 Invalid drop of partially-initialized instances in wasmtime

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

5.1CVSS7.5AI score0.00772EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/02/16 10:0 p.m.62 views

CVE-2022-23636 Invalid drop of partially-initialized instances in wasmtime

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

5.1CVSS8.2AI score0.00772EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2021/11/30 10:20 p.m.7 views

embly-wrapper (=0.0.2), wasi-common-lucet (>=0.4.0 <=0.4.2) potentially affected by CVE-2021-43790 via lucet-runtime (>=0.4.3 <=0.6.1)

lucet-runtime CARGO version =0.4.3, =0.4.0, =0.4.2 Source cves: CVE-2021-43790 Source advisory: OSV:GHSA-HF79-8HJP-RRVQ...

8.5CVSS7.2AI score0.01566EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/11/30 12:0 p.m.4 views

embly-wrapper (=0.0.2), wasi-common-lucet (>=0.4.0 <=0.4.2) potentially affected by CVE-2021-43790 via lucet-runtime (>=0.4.3 <=0.6.1)

lucet-runtime CARGO version =0.4.3, =0.4.0, =0.4.2 Source cves: CVE-2021-43790 Source advisory: OSV:RUSTSEC-2021-0155...

8.5CVSS7.2AI score0.01566EPSS
Exploits1
NVD
NVD
added 2021/09/17 9:15 p.m.15 views

CVE-2021-39218

Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.26.0 and before version 0.30.0 is affected by a memory unsoundness vulnerability. There was an invalid free and out-of-bounds read and write bug when running Wasm that uses externrefs in Wasmtime. To trigger thi...

6.3CVSS0.003EPSS
Exploits0References5
Rows per page
Query Builder