CVE-2025-6274

Medium CVSS: 4.8

A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been classified as problematic. Affected is the function OnDataCount of the file src/interp/binary-reader-interp.cc. The manipulation leads to resource consumption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. A similar issue reported during the same timeframe was disputed by the code maintainer because it might not affect "real world wasm programs". Therefore, this entry might get disputed as well in the future.

Vendor

Webassembly

Product

Wabt

CWE

CWE-400

Yayın Tarihi

2025-06-19 19:15:22

Güncelleme

2025-07-02 18:33:27

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-400 Wabt MEDIUM Webassembly 2025

Referanslar

https://github.com/WebAssembly/wabt/issues/2598 https://github.com/user-attachments/files/20191325/wabt_crash_4.txt https://vuldb.com/?ctiid.313278 https://vuldb.com/?id.313278 https://vuldb.com/?submit.593016 https://github.com/WebAssembly/wabt/issues/2598

Benzer Kayıtlar

Medium

CVE-2025-15412

A security vulnerability has been detected in WebAssembly wabt up to 1.0.39. This issue affects the function wabt::Decom…

Medium

CVE-2025-15411

A weakness has been identified in WebAssembly wabt up to 1.0.39. This vulnerability affects the function wabt::AST::Inse…

Medium

CVE-2025-14956

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReade…

Medium

CVE-2025-14957

A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBu…

Medium

CVE-2025-6275

A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been declared as problematic. Affected by this vulner…

Medium

CVE-2025-6273

A vulnerability was found in WebAssembly wabt up to 1.0.37 and classified as problematic. This issue affects the functio…