Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-39393

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Wasmtime is a standalone runtime for WebAssembly. Prior to versions 2.0.2 and 1.0.2, there is a bug in Wasmtime's implementation of its pooling instance allocat...

8.6CVSS7.6AI score0.00657EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 7:36 p.m.14 views

CVE-2022-39393

Wasmtime is a standalone runtime for WebAssembly. Prior to versions 2.0.2 and 1.0.2, there is a bug in Wasmtime's implementation of its pooling instance allocator where when a linear memory is reused for another instance the initial heap snapshot of the prior instance can be visible, erroneously ...

8.6CVSS8.3AI score0.00657EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/11/10 9:16 p.m.5 views

auto-wasi (=0.1.0), candid-extractor (>=0.1.0 <=0.1.2) +99 more potentially affected by CVE-2022-39393 via wasmtime (>=0.10.0 <=12.0.2)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.5.0, =0.0.1-alpha, =0.40.1, =0.45.0, =0.1.0, =0.3.0 - inkpad-executor =0.1.0 and more Source cves: CVE-2022-39393 Source advisory: OSV:GHSA-WH6W-3828-G9QF...

8.6CVSS7.5AI score0.00657EPSS
Exploits0
CVE
CVE
added 2022/11/10 12:0 a.m.72 views

CVE-2022-39393

Wasmtime vulnerability CVE-2022-39393: prior to versions 2.0.2 and 1.0.2, a bug in the pooling instance allocator can cause the initial heap snapshot of a prior instance to be visible to the next instance when reusing linear memory. This data leakage between instances can lead to information expo...

8.6CVSS8.4AI score0.00657EPSS
Exploits0References2Affected Software1
vulnersOsv
vulnersOsv
added 2022/11/05 12:0 p.m.5 views

auto-wasi (=0.1.0), candid-extractor (>=0.1.0 <=0.1.2) +99 more potentially affected by CVE-2022-39393 via wasmtime (>=0.10.0 <=12.0.2)

wasmtime CARGO version =0.10.0, =0.1.0, =0.1.0, =0.1.1, =0.5.3-0, =0.4.0, =0.4.0, =0.0.0, =0.5.0, =0.0.1-alpha, =0.40.1, =0.45.0, =0.1.0, =0.3.0 - inkpad-executor =0.1.0 and more Source cves: CVE-2022-39393 Source advisory: OSV:RUSTSEC-2022-0098...

8.6CVSS7.5AI score0.00657EPSS
Exploits0
Rows per page
Query Builder