CVE-2024-47813 | bytecodealliance wasmtime up to 21.0.1/22.0.0/23.0.2/24.0.0/25.0.1 wasmtime::Engine toctou (GHSA-7qmx-3fpx-r45m)

Inserito da Angelo Barbosa | Ott 9, 2024 | CVE

A vulnerability was found in bytecodealliance wasmtime up to 21.0.1/22.0.0/23.0.2/24.0.0/25.0.1. It has been rated as problematic. This issue affects the function wasmtime::Engine. The manipulation leads to time-of-check time-of-use.

The identification of this vulnerability is CVE-2024-47813. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47813 | bytecodealliance wasmtime up to 21.0.1/22.0.0/23.0.2/24.0.0/25.0.1 wasmtime::Engine toctou (GHSA-7qmx-3fpx-r45m)

Post correlati

CVE-2024-5055 | Apache Friends XAMPP 7.3.2 HTTP Request resource consumption

CVE-2024-5023 | Netflix ConsoleMe up to 1.3.x command injection (nflx-2024-002)

CVE-2024-5312 | PHP Server Monitor 3.2.0 index.php cross site scripting

CVE-2023-42897 | Apple iOS/iPadOS up to 17.1 Siri access control (HT214035)