Lucene search
HistoryAug 22, 2023 - 7:15 p.m.
CVE-2020-18382
heap buffer overflow
wasm input
segmentation fault
denial of service
wasm-opt
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
27.8%
Heap-buffer-overflow in /src/wasm/wasm-binary.cpp in wasm::WasmBinaryBuilder::visitBlock(wasm::Block*) in Binaryen 1.38.26. A crafted wasm input can cause a segmentation fault, leading to denial-of-service, as demonstrated by wasm-opt.
Affected configurations
Node
webassemblybinaryenMatch1.38.26
| Vendor | Product | Version | CPE |
|---|---|---|---|
| webassembly | binaryen | 1.38.26 | cpe:2.3:a:webassembly:binaryen:1.38.26:*:*:*:*:*:*:* |
Related
prion
prion
Heap overflow
2023-08-22 19:15:00
debiancve
debiancve
CVE-2020-18382
2023-08-22 19:15:55
cve
cve
CVE-2020-18382
2023-08-22 19:15:55
ubuntucve
ubuntucve
CVE-2020-18382
2023-08-22 00:00:00
osv
osv
CVE-2020-18382
2023-08-22 19:15:55
cvelist
cvelist
CVE-2020-18382
2023-08-22 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
27.8%
Related for NVD:CVE-2020-18382