2106 matches found
Unspecified vulnerability in Binaryen (CNVD-2019-34844)
Binaryen is a compiler infrastructure and toolchain library for WebAssembly written in C++. An unspecified vulnerability exists in Binaryen. An attacker can exploit this vulnerability to cause a denial of service via a wasm file...
DEBIAN-CVE-2019-7703
In Binaryen 1.38.22, there is a use-after-free problem in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service via a wasm file, as demonstrated by wasm-merge...
UBUNTU-CVE-2019-7152
A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::processFunctions in wasm/wasm-binary.cpp when calling wasm::WasmBinaryBuilder::getFunctionIndexName in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-op...
Google Chromium WebAssembly Code Execution Vulnerability
Google Chromium is a web browser developed by Google, Inc. WebAssembly is a sandboxed execution environment. A security vulnerability exists in WebAssembly in Google Chromium versions prior to 69.0.3497.100. A remote attacker can exploit the vulnerability to execute arbitrary code in the sandbox...
Google Chrome WebAssembly Code Execution Vulnerability
Google Chrome is a web browser developed by Google, and WebAssembly is a sandboxed execution environment. A code execution vulnerability exists in WebAssembly in versions of Google Chrome prior to 62.0.3202.62. A remote attacker can exploit this vulnerability to write arbitrary code out-of-bounds...
CVE-2018-17458
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2018-17458
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
Improper access control
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2018-17458
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2017-15401
A memory corruption bug in WebAssembly could lead to out of bounds read and write through V8 in WebAssembly in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2017-15401
A memory corruption bug in WebAssembly could lead to out of bounds read and write through V8 in WebAssembly in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2017-15401
A memory corruption bug in WebAssembly could lead to out of bounds read and write through V8 in WebAssembly in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
Memory corruption
A memory corruption bug in WebAssembly could lead to out of bounds read and write through V8 in WebAssembly in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
UBUNTU-CVE-2018-17458
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2018-17458
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69.0.3497.92 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2018-17458
CVE-2018-17458 affects Google Chrome WebAssembly: an improper update of the WebAssembly dispatch table in WebAssembly (Chrome before 69.0.3497.92) allowed a remote attacker to execute arbitrary code in a sandbox via a crafted HTML page. This is evidenced by NVD details and CNVD entries, which des...
CVE-2017-15401
A memory corruption bug in WebAssembly could lead to out of bounds read and write through V8 in WebAssembly in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
CVE-2017-15401
The CVE-2017-15401 entry describes a memory corruption bug in WebAssembly via V8 in Google Chrome prior to 62.0.3202.62, enabling out-of-bounds read/write and remote code execution in the sandbox through a crafted HTML page. Connected sources corroborate the Chrome version boundary and provide pu...
CVE-2018-17458
Removed by vendor...
Google Chrome WebAssembly Memory Misreference Vulnerability
Google Chrome is a web browser developed by Google, and WebAssembly is a sandboxed execution environment. A memory misreference vulnerability exists in WebAssembly in versions of Google Chrome prior to 66.0.3359.106. A remote attacker can exploit this vulnerability to execute arbitrary code in th...