Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue in bytecodealliance wasm-micro-runtime before v.b3f728c and fixed in commit 06df58f allows a remote attacker to escalate privileges via a crafted file to the check_was_abi_compatibility function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WebAssembly Micro Runtime 安全漏洞
Vulnerability Description
WebAssembly Micro Runtime(WAMR)是Bytecode Alliance开源的一种轻量级的独立 WebAssembly 运行时。具有占用空间小、高性能和高度可配置的功能,适用于从嵌入式、物联网、边缘到可信执行环境 (TEE)、智能合约、云原生等应用程序。 WebAssembly Micro Runtime v.b3f728c之前版本存在安全漏洞,该漏洞源于远程攻击者可以通过构造的文件对check_was_abi_compatibility函数进行权限提升攻击。
CVSS Information
N/A
Vulnerability Type
N/A