Vulnerabilidades en bytecodealliance
50 resultadosCVE-2025-43853HIGHiwasm vulnerable to filesystem sandbox escape with symlink when using uvwasi featureEPSS 0.2%CVE-2026-34944MEDIUMWasmtime segfault or unused out-of-sandbox load with `f64x2.splat` operator on x86-64EPSS 0.2%CVE-2026-35195MEDIUMWasmtime has an out-of-bounds write or crash when transcoding component model stringsEPSS 0.2%CVE-2026-24116MEDIUMWasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64EPSS 0.2%CVE-2026-35186MEDIUMWasmtime has an improperly masked return value from `table.grow` with Winch compiler backendEPSS 0.2%CVE-2025-61670LOWWasmtime has memory leak in C API with `externref` and `anyref` typesEPSS 0.2%CVE-2025-64704MEDIUMWebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instructionEPSS 0.2%CVE-2024-47813LOWWasmtime race condition could lead to WebAssembly control-flow integrity and type safety violationsEPSS 0.2%CVE-2026-34983LOWWasmtime has a use-after-free bug after cloning `wasmtime::Linker`EPSS 0.1%CVE-2025-64345LOWWasmtime provides unsound API access to a WebAssembly shared linear memoryEPSS 0.1%