Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Wasmtime vulnerable to panic when using a dropped extenref-typed element segment
Vulnerability Description
wasmtime is a runtime for WebAssembly. The 19.0.0 release of Wasmtime contains a regression introduced during its development which can lead to a guest WebAssembly module causing a panic in the host runtime. A valid WebAssembly module, when executed at runtime, may cause this panic. This vulnerability has been patched in version 19.0.1.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
使用不兼容类型访问资源(类型混淆)
Vulnerability Title
wasmtime 安全漏洞
Vulnerability Description
Wasmtime是一个字节码联盟项目,它是一个独立的仅用于 WebAssembly 和 WASI 的 wasm 优化运行时。 wasmtime 19.0.0版本存在安全漏洞,该漏洞源于valid WebAssembly模块在主机运行时存在安全漏洞。
CVSS Information
N/A
Vulnerability Type
N/A