Lucene search
K

2109 matches found

Prion
Prion
added 2018/09/10 4:29 a.m.13 views

Heap overflow

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an unspecified "heap-buffer-overflow" condition in FunctionValidationContext::else...

6.8CVSS8.9AI score0.01269EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/09/10 4:29 a.m.21 views

CVE-2018-16766

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because Errors::unreachable is reached...

8.8CVSS9AI score0.01269EPSS
Exploits1References1
Prion
Prion
added 2018/09/10 4:29 a.m.15 views

Code injection

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because a certain newallocator allocate call fails...

6.8CVSS8.9AI score0.01269EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/09/10 4:29 a.m.17 views

CVE-2018-16765

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an unspecified "heap-buffer-overflow" condition in FunctionValidationContext::else...

8.8CVSS9AI score0.01269EPSS
Exploits1References1
OSV
OSV
added 2018/09/10 4:29 a.m.2 views

CVE-2018-16766

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because Errors::unreachable is reached...

8.8CVSS5.8AI score0.01269EPSS
Exploits1References1
OSV
OSV
added 2018/09/10 4:29 a.m.4 views

CVE-2018-16764

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an IR::FunctionValidationContext::catchall heap-based buffer over-read...

8.8CVSS6AI score0.01269EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/09/10 4:0 a.m.17 views

CVE-2018-16766

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because Errors::unreachable is reached...

9AI score0.01269EPSS
Exploits1References1
CVE
CVE
added 2018/09/10 4:0 a.m.45 views

CVE-2018-16766

WAVM (WebAssembly Virtual Machine) is affected by CVE-2018-16766. A crafted file can trigger Errors::unreachable(), potentially causing a denial of service (application crash) or other unspecified impact. The CVSS data (3.0) indicates a network-based, low-attack-vector issue with no privileges re...

8.8CVSS8.9AI score0.01269EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/09/10 4:0 a.m.37 views

CVE-2018-16767

CVE-2018-16767 affects WAVM (WebAssembly Virtual Machine). A crafted file sent to WAVM may trigger a heap-buffer-overflow in FunctionValidationContext::popAndValidateOperand, causing denial of service (application crash) and possibly other impact for WAVM versions up to and including 2018-07-26. ...

8.8CVSS8.9AI score0.01269EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/10 4:0 a.m.18 views

CVE-2018-16765

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an unspecified "heap-buffer-overflow" condition in FunctionValidationContext::else...

9AI score0.01269EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/09/10 4:0 a.m.13 views

CVE-2018-16769

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because libRuntime.so!llvm::InstructionCombiningPass::runOnFunction is mishandled...

9AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.2 views

WAVM Denial of Service Vulnerability

WAVM is the WebAssembly Virtual Machine. A denial-of-service vulnerability exists in WAVM 2018-07-26 and prior versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

8.8CVSS8.5AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.3 views

WAVM Buffer Overflow Vulnerability (CNVD-2019-09774)

WAVM is the WebAssembly Virtual Machine. A heap buffer overflow vulnerability exists in FunctionValidationContext::else in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

8.8CVSS8.7AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.2 views

WAVM Denial of Service Vulnerability (CNVD-2019-09772)

WAVM is the WebAssembly Virtual Machine. A denial-of-service vulnerability exists in WAVM 2018-07-26 and earlier versions, which stems from a failure of a certain newallocator allocation call and can be exploited by an attacker to cause a denial of service application crash by sending a specially...

8.8CVSS8.4AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.2 views

WAVM Buffer Overflow Vulnerability (CNVD-2019-09770)

WAVM is the WebAssembly Virtual Machine. A heap buffer overflow vulnerability exists in IR::FunctionValidationContext::end in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

8.8CVSS8.7AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.2 views

WAVM Denial of Service Vulnerability (CNVD-2019-09771)

WAVM is the WebAssembly Virtual Machine. A denial of service vulnerability exists in WAVM 2018-07-26 and earlier versions, which stems from the program failing to properly handle the 'libRuntime.so!llvm::InstructionCombiningPass::runOnFunction' function. An attacker can cause a denial of service...

8.8CVSS8.5AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.2 views

WAVM Buffer Overflow Vulnerability

WAVM is the WebAssembly Virtual Machine. A buffer overflow vulnerability exists in the 'FunctionValidationContext::popAndValidateOperand' function in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker by sending a specially crafted file to WAVM This can be exploited to...

8.8CVSS8.7AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/10 12:0 a.m.3 views

WAVM Buffer Over-Read Vulnerability

WAVM is the WebAssembly Virtual Machine. A heap buffer over-read vulnerability exists in IR::FunctionValidationContext::catchall in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker to cause a denial of service application crash by sending a specially crafted file...

8.8CVSS8.6AI score0.01269EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/06 12:0 a.m.2 views

Google Chrome V8 Type Obfuscation Vulnerability (CNVD-2018-22402)

Google Chrome is the United States Google Google company developed a Web browser. v8 is one of the open source JavaScript engine. A type obfuscation vulnerability exists in WebAssembly of V8 in versions prior to Google Chrome 63.0.3239.84. A remote attacker can exploit this vulnerability to cause...

8.8CVSS8.6AI score0.01661EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/08/28 8:29 p.m.39 views

CVE-2017-15429

Inappropriate implementation in V8 WebAssembly JS bindings in Google Chrome prior to 63.0.3239.108 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

6.1CVSS6.7AI score0.01142EPSS
Exploits0References2
Rows per page
Query Builder