CVE-2025-15413

A vulnerability was detected in wasm3 up to 0.5.0. Impacted is the function opSetSloti32/opCallIndirect of the file m3exec.h. Performing a manipulation results in memory corruption. The attack needs to be approached locally. The exploit is now public and may be used. Unfortunately, the project ha...

CVE-2025-15413 wasm3 m3_exec.h op_CallIndirect memory corruption

A vulnerability was detected in wasm3 up to 0.5.0. Impacted is the function opSetSloti32/opCallIndirect of the file m3exec.h. Performing a manipulation results in memory corruption. The attack needs to be approached locally. The exploit is now public and may be used. Unfortunately, the project ha...

CVE-2025-15413

Summary: CVE-2025-15413 affects wasm3 up to 0.5.0, specifically the functions in the file m3_exec.h: op_SetSlot_i32 and op_CallIndirect. The vulnerability allows memory corruption via local manipulation of execution flow. What’s affected: wasm3 0.5.0 and earlier; code paths involved are the slot-...

Wasm3 缓冲区错误漏洞

Wasm3 is a fast WebAssembly interpreter and the most versatile WASM runtime from the Wasm3 open source. A buffer error vulnerability exists in wasm3 0.5.0 and earlier versions, which stems from a memory corruption in the opSetSloti32/opCallIndirect function in the file m3exec.h, which could lead ...