81 matches found
GHSA-Q8HX-MM92-4WVG vulnerabilities
Vulnerabilities for packages: wizer, wash, wasmcloud, zed...
GHSA-Q8HX-MM92-4WVG vulnerabilities
Vulnerabilities for packages: wash, zed, wasmcloud, wizer...
CVE-2024-47813 vulnerabilities
Vulnerabilities for packages: wizer, wash, wasmcloud, zed...
CVE-2024-47813 vulnerabilities
Vulnerabilities for packages: wash, zed, wasmcloud, wizer...
CVE-2024-47763 vulnerabilities
Vulnerabilities for packages: wash, zed, wasmcloud, wizer...
CVE-2024-47763 vulnerabilities
Vulnerabilities for packages: wizer, wash, wasmcloud, zed...
GHSA-VR26-JCQ5-FJJ8 vulnerabilities
Vulnerabilities for packages: wasmcloud, qdrant, wash, pixi, uv...
GHSA-X4GP-PQPJ-F43Q vulnerabilities
Vulnerabilities for packages: wash, wasmcloud, rye, atuin...
GHSA-6G7W-8WPP-FRHJ vulnerabilities
Vulnerabilities for packages: kdash, xh, wasmcloud, samply, cargo-audit, pgcat...
GHSA-6G7W-8WPP-FRHJ vulnerabilities
Vulnerabilities for packages: samply, cargo-audit, xh, wasmcloud, kdash, pgcat...
CVE-2024-32650 vulnerabilities
Vulnerabilities for packages: samply, cargo-audit, xh, wasmcloud, kdash, pgcat...
CVE-2024-32650 vulnerabilities
Vulnerabilities for packages: kdash, xh, wasmcloud, samply, cargo-audit, pgcat...
hotg-rune-runtime (>=0.11.0 <=0.11.3), hotg-rune-wasm3-runtime (>=0.6.0 <=0.10.0) +7 more potentially affected by CVE-2022-34529 via wasm3 (>=0.1.3 <=0.3.1)
wasm3 CARGO version =0.1.3, =0.11.0, =0.6.0, =0.7.0, =0.4.0, =0.2.0, =0.0.1, =0.16.0, =0.15.0, =0.19.0 Source cves: CVE-2022-34529 Source advisory: OSV:GHSA-GQ4P-4HXV-5RG9...
wasmcloud-otp has an unspecified vulnerability
wasmcloud-otp is a wasmCloud server process that securely hosts and provides scheduling for participants and capability providers. wasmcloud-otp suffers from a security vulnerability that stems from the fact that in versions prior to 0.52.2, participants can bypass capability authorization. No...
CVE-2022-21707
wasmCloud Host Runtime is a server process that securely hosts and provides dispatch for web assembly WASM actors and capability providers. In versions prior to 0.52.2 actors can bypass capability authorization. Actors are normally required to declare their capabilities for inbound invocations, b...
Authorization
wasmCloud Host Runtime is a server process that securely hosts and provides dispatch for web assembly WASM actors and capability providers. In versions prior to 0.52.2 actors can bypass capability authorization. Actors are normally required to declare their capabilities for inbound invocations, b...
CVE-2022-21707 Incorrect Authorization in wasmCloud
wasmCloud Host Runtime is a server process that securely hosts and provides dispatch for web assembly WASM actors and capability providers. In versions prior to 0.52.2 actors can bypass capability authorization. Actors are normally required to declare their capabilities for inbound invocations, b...
CVE-2022-21707
CVE-2022-21707 affects wasmCloud Host Runtime. In versions prior to 0.52.2, actor capability claims are not verified on inbound invocations, allowing unauthorized invocations from linked capability providers and weakening the actor security model. The issue is fixed in 0.52.2 and later; there is ...
CVE-2022-21707 Incorrect Authorization in wasmCloud
wasmCloud Host Runtime is a server process that securely hosts and provides dispatch for web assembly WASM actors and capability providers. In versions prior to 0.52.2 actors can bypass capability authorization. Actors are normally required to declare their capabilities for inbound invocations, b...
wasmcloud-otp 安全漏洞
wasmcloud-otp is a wasmCloud server process that securely hosts and provides scheduling for participants and capability providers. wasmcloud-otp suffers from a security vulnerability that stems from the fact that in versions prior to 0.52.2, participants can bypass capability authorization. No...