2 matches found
CVE-2024-34250
CVE-2024-34250 : A heap buffer overflow was found in Bytecode Alliance’s wasm-micro-runtime v2.0.0, allowing a remote attacker to cause a denial of service via the function wasm_loader_check_br in core/iwasm/interpreter/wasm_loader.c. The vulnerability is described across multiple feeds (includin...
CVE-2025-54126
The CVE-2025-54126 entry concerns WebAssembly Micro Runtime (WAMR) iwasm binary; versions 2.4.0 and earlier use --addr-pool with an IPv4 address lacking a subnet mask, allowing acceptance of all IPs and potentially bypassing access restrictions. This exposes services to all external connections a...