CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/10 3:32 p.m.•4 views

EUVD-2026-21037

Wasmtime has improperly masked return value from table.grow with Winch compiler backend...

6.1CVSS5.8AI score0.00214EPSS

OSV•added 2026/04/10 3:32 p.m.•2 views

GHSA-F984-PCP8-V2P7 Wasmtime has improperly masked return value from `table.grow` with Winch compiler backend

Impact Wasmtime's Winch compiler backend contains a bug where translating the table.grow operator causes the result to be incorrectly typed. For 32-bit tables this means that the result of the operator, internally in Winch, is tagged as a 64-bit value instead of a 32-bit value. This invalid...

6.1CVSS5.7AI score0.00214EPSS

Exploits0References4

Github Security Blog•added 2026/04/10 3:32 p.m.•6 views

Wasmtime has improperly masked return value from `table.grow` with Winch compiler backend

7.5CVSS5.7AI score0.00214EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2026/04/09 11:4 p.m.•4 views

CVE-2026-35186

A flaw was found in Wasmtime, a runtime for WebAssembly. The Winch compiler backend incorrectly handles the table.grow operator, leading to an internal type mismatch. This can result in a Denial of Service DoS, where the host process crashes. Additionally, under specific configurations with...

RedhatCVE•added 2026/04/09 10:41 p.m.•2 views

Exploits0References4

CVE-2026-34987

A flaw was found in Wasmtime, a runtime for WebAssembly. When using its non-default Winch compiler backend, a properly constructed guest WebAssembly Wasm module can exploit an incorrect assumption in how memory offsets are handled. This allows the guest Wasm to access host memory outside its...

9.9CVSS6.1AI score0.00278EPSS

Exploits0References4

NVD•added 2026/04/09 7:16 p.m.•3 views

CVE-2026-35186

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler backend contains a bug where translating the table.grow operator causes the result to be incorrectly typed. For 32-bit tables this means that the result of the operator, internally i...

7.5CVSS0.00214EPSS

NVD•added 2026/04/09 7:16 p.m.•1 views

CVE-2026-34987

9.9CVSS0.00278EPSS

Cvelist•added 2026/04/09 6:54 p.m.•20 views

CVE-2026-35186 Wasmtime has an improperly masked return value from `table.grow` with Winch compiler backend

6.1CVSS0.00214EPSS

CVE•added 2026/04/09 6:54 p.m.•10 views

CVE-2026-35186

Wasmtime vulnerable due to a Winch backend bug in table.grow (affecting 32-bit tables) that could mis-interpret the result and allow reads/writes to the 16 bytes before linear memory, causing DoS and potential host-data leakage. Affected versions: Wasmtime 25.0.0 up to before 36.0.7, 42.0.2, and ...

Exploits0References1Affected Software1

Vulnrichment•added 2026/04/09 6:54 p.m.•3 views

CVE-2026-35186 Wasmtime has an improperly masked return value from `table.grow` with Winch compiler backend

6.1CVSS5.7AI score0.00214EPSS

ATTACKERKB•added 2026/04/09 6:48 p.m.•0 views

CVE-2026-34987

9CVSS6AI score0.00278EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/04/09 6:48 p.m.•3 views

CVE-2026-34987 Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory access

9CVSS5.8AI score0.00278EPSS

RustSec•added 2026/04/09 12:0 p.m.•8 views

Improperly masked return value from `table.grow` with Winch compiler backend

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7 For more information see the GitHub-hosted security advisory...

7.5CVSS5.9AI score0.00214EPSS

Exploits0Affected Software1

OSV•added 2026/04/09 12:0 p.m.•2 views

RUSTSEC-2026-0095 Wasmtime with Winch compiler backend may allow a sandbox-escaping memory access

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83 For more information see the GitHub-hosted security advisory...

9CVSS5.8AI score0.00278EPSS

RustSec•added 2026/04/09 12:0 p.m.•14 views

Wasmtime with Winch compiler backend may allow a sandbox-escaping memory access

9.9CVSS5.9AI score0.00278EPSS

Exploits0Affected Software1

Positive Technologies•added 2026/04/09 12:0 a.m.•3 views

PT-2026-31692

Name of the Vulnerable Software and Affected Versions Wasmtime versions 25.0.0 through 36.0.6, 42.0.2, and 43.0.1 Description Wasmtime, a runtime for WebAssembly, has an issue in its Winch compiler backend where the translation of the table.grow operator results in an incorrect type. Specifically...

CNNVD•added 2026/04/09 12:0 a.m.•3 views

Exploits0References19

wasmtime 安全漏洞

Wasmtime is a lightweight WebAssembly runtime open source by the Bytecode Alliance. Versions of Wastime prior to 36.0.7, 42.0.2, and 43.0.1 contained security vulnerabilities. These vulnerabilities were caused by an error in the Winch compiler backend, which incorrectly interpreted the table.grow...

Tenable Nessus•added 2026/04/09 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-34987

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime with its Winch baseline non-default compiler backend may allow...

9.9CVSS5.5AI score0.00278EPSS

CNNVD•added 2026/04/09 12:0 a.m.•4 views

wasmtime 缓冲区错误漏洞

Wasmtime is a lightweight WebAssembly runtime open source by the Bytecode Alliance. Versions of Wastime prior to 36.0.7, 42.0.2, and 43.0.1 contained a buffer error vulnerability. This vulnerability stemmed from a flaw in the Winch compiler backend, which could allow guest Wasm access to host...

9.9CVSS6.3AI score0.00278EPSS