CVE-2024-35418

Published November 8th, 2024

View on NVD ↗

CVSS v3

6.2

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

wac commit 385e1 was discovered to contain a heap overflow via the setup_call function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.

kanaka/wac

WebAssembly interpreter in C

GitHub

483