CVE-2025-14957 | WebAssembly Binaryen up to 125 IRBuilder wasm-ir-builder.cpp makeLocalTee Index null pointer dereference (Issue 8090)

A vulnerability labeled as problematic has been found in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builder.cpp of the component IRBuilder. Such manipulation of the argument Index leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2025-14957. Local access is required to approach this attack. Moreover, an exploit is present.

Applying a patch is advised to resolve this issue.

CVE-2025-14957 | WebAssembly Binaryen up to 125 IRBuilder wasm-ir-builder.cpp makeLocalTee Index null pointer dereference (Issue 8090)

Post correlati

CVE-2020-10370 | BlueZ Spectra denial of service

CVE-2025-14111 | Rarlab RAR App up to 7.11 Build 127 on Android com.rarlab.rar path traversal

CVE-2024-10655 | Tongda OA 2017 up to 11.9 /pda/reportshop/new.php repid sql injection

CVE-2024-5285 | WP-FeedStats wp-affiliate-platform Plugin up to 6.5.1 on WordPress cross-site request forgery