Lucene search
+L

973 matches found

CNNVD
CNNVD
added 2026/01/01 12:0 a.m.7 views

WebAssembly wabt 缓冲区错误漏洞

WebAssembly wabt is a WebAssembly binary toolkit open-sourced by WebAssembly. A buffer error vulnerability exists in WebAssembly wabt 1.0.39 and earlier versions, which originates from an out-of-bounds read in the wabt::Decompiler::VarName function in the wasm-decompile component file...

7.8CVSS5.2AI score0.00179EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-1026

Name of the Vulnerable Software and Affected Versions WebAssembly wabt versions up to 1.0.39 Description A memory corruption issue exists in WebAssembly wabt. The issue is related to the wabt::AST::InsertNode function within the /src/repro/wabt/bin/wasm-decompile file of the wasm-decompile...

7.8CVSS5.8AI score0.00179EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.16 views

PT-2026-1028

Name of the Vulnerable Software and Affected Versions WebAssembly wabt versions up to 1.0.39 Description A security issue exists in WebAssembly wabt, specifically within the wabt::Decompiler::VarName function located in the /src/repro/wabt/bin/wasm-decompile file of the wasm-decompile component...

7.8CVSS5.8AI score0.00179EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2026/01/01 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-15411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weakness has been identified in WebAssembly wabt up to 1.0.39. This vulnerability affects the function wabt::AST::InsertNode of the file...

7.8CVSS5.9AI score0.00179EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/19 4:32 p.m.33 views

CVE-2025-14956 WebAssembly Binaryen wasm-binary.cpp readExport heap-based overflow

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

5.3CVSS0.00181EPSS
Exploits1References8
OSV
OSV
added 2025/12/19 4:32 p.m.7 views

CVE-2025-14956 WebAssembly Binaryen wasm-binary.cpp readExport heap-based overflow

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

4.8CVSS5.9AI score0.00181EPSS
Exploits1References10
AlpineLinux
AlpineLinux
added 2025/12/19 4:32 p.m.3 views

CVE-2025-14956

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

7.1CVSS6.6AI score0.00181EPSS
Exploits1
Snyk
Snyk
added 2025/12/10 1:57 a.m.3 views

Malicious Package

Overview wasm-bindgen is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/10 1:57 a.m.6 views

Malicious code in wasm-bindgen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3b2a3d6aa85e6e53ccd0463891b26156f77f3b75134166dbc68c14ec2c6bd2 The package wasm-bindgen was found to contain malicious code. Source: ghsa-malware a1de8824d178cfc9806b7413eeb3661781e7e278f0b877117bddb857bddb592b A...

6.9AI score
Exploits0References1
EUVD
EUVD
added 2025/12/10 1:57 a.m.3 views

EUVD-2025-202373

Malicious code in wasm-bindgen npm...

6.6AI score
Exploits0References1
OSV
OSV
added 2025/12/10 1:57 a.m.4 views

MAL-2025-192419 Malicious code in wasm-bindgen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3b2a3d6aa85e6e53ccd0463891b26156f77f3b75134166dbc68c14ec2c6bd2 The package wasm-bindgen was found to contain malicious code. Source: ghsa-malware a1de8824d178cfc9806b7413eeb3661781e7e278f0b877117bddb857bddb592b A...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/12/04 9:5 a.m.13 views

RLSA-2023:5849 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 nodejs: integrity checks according t...

7.5CVSS7.4AI score0.99999EPSS
Exploits19References5
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.7 views

RockyLinux 9 : nodejs:18 (RLSA-2023:5849)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:5849 advisory. HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 nodejs: integrity checks according to...

7.5CVSS7.3AI score0.99999EPSS
Exploits19References9
Snyk
Snyk
added 2025/12/02 6:50 a.m.4 views

Malicious Package

Overview umap-wasm is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS6.8AI score
Exploits0References2
Brave Browser
Brave Browser
added 2025/12/02 12:34 a.m.11 views

Brave Desktop 1.85.111 Security Fixes

Improved IKEv2 VPN configuration parameters on Windows. - Enabled WASM Interpreter when JIT is disabled. Upgraded Chromium to 143.0.7499.40 — refer to Google Chrome advisories for inherited CVEs...

5.8AI score
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/11/30 1:12 p.m.2 views

EUVD-2025-199931

Malicious code in umap-wasm npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/30 1:12 p.m.15 views

Malicious code in umap-wasm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92fe0d08b117ec6e7dcd48b13025326c2f427f3251c624867c9f0d398bd2dab8 The package umap-wasm was found to contain malicious code. Source: ghsa-malware a8b9419bdb44fab11a3bade4b4831308972f0fc3acfd3472c362fe672339e8ab Any...

7AI score
Exploits0References1
OSV
OSV
added 2025/11/30 1:12 p.m.10 views

MAL-2025-191492 Malicious code in umap-wasm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92fe0d08b117ec6e7dcd48b13025326c2f427f3251c624867c9f0d398bd2dab8 The package umap-wasm was found to contain malicious code. Source: ghsa-malware a8b9419bdb44fab11a3bade4b4831308972f0fc3acfd3472c362fe672339e8ab Any...

7AI score
Exploits0References1
NVD
NVD
added 2025/11/25 11:15 p.m.8 views

CVE-2025-64713

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, an out-of-bounds array access issue exists in WAMR's fast interpreter mode during WASM bytecode loading. When framerefbottom and frameoffsetbottom arrays are at capacity and a GETGLOBALI32...

7.4CVSS0.0029EPSS
Exploits1References2
Snyk
Snyk
added 2025/11/25 11:8 p.m.3 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the preservelocalforblock function, when handling a sequence where a GETGLOBALI32 opcode is followed by an if opcode in fast interpreter mode. An attacker can cause out-of-bounds access to the frameoffsetbottom arr...

7.4CVSS6.6AI score0.0029EPSS
Exploits1References2
Rows per page
Query Builder