A vulnerability, which was classified as problematic, was found in Bytecode Alliance wasm-micro-runtime up to 1.2.x. This affects the function push_pop_frame_ref_offset of the component Module Handler. The manipulation leads to double free.

This vulnerability is uniquely identified as CVE-2023-52284. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.