VDB
CVE-2024-34250
CVE-2024-34250
PUBLISHED
CVSS 6.199999809265137 MEDIUM
A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause at least a denial of service via the "wasm_loader_check_br" function in core/iwasm/interpreter/wasm_loader.c.
EPSS 0.12% · 30.3th percentile
Risk Scores
CVSS 3.1
6.199999809265137
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.12%
30.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| bytecodealliance | wasm_micro_runtime | 2.0.0 |
| n/a | n/a | n/a |
| bytecodealliance | webassembly_micro_runtime | 2.0.0 |
Exploit Intelligence
Timeline
- May 6, 2024 CVE Published
- May 7, 2024 EPSS Score
- May 31, 2024 EPSS Score
- Jun 25, 2024 EPSS Score
- Jul 20, 2024 EPSS Score
- Aug 2, 2024 CVE Updated
- Aug 13, 2024 EPSS Score
- Sep 6, 2024 EPSS Score
- Sep 30, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 24, 2024 EPSS Score
- Nov 8, 2024 Coalition ESS Score