- Reported
-
- Issued
-
- Package
-
wasmtime
(crates.io)
- Type
-
Vulnerability
- Aliases
-
- References
-
- CVSS Score
- 6.9
MEDIUM
- CVSS Details
-
- Attack Complexity
- Low
- Attack Requirements
- None
- Attack Vector
- Network
- Privileges Required
- Low
- Availability Impact to the Subsequent System
- None
- Confidentiality Impact to the Subsequent System
- None
- Integrity Impact to the Subsequent System
- None
- User Interaction
- Passive
- Availability Impact to the Vulnerable System
- High
- Confidentiality Impact to the Vulnerable System
- None
- Integrity Impact to the Vulnerable System
- None
- CVSS Vector
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
- Patched
-
>=24.0.7, <25.0.0>=36.0.7, <37.0.0>=42.0.2, <43.0.0>=43.0.1
Description
This is an entry in the RustSec database for the Wasmtime security advisory
located at
https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv
For more information see the GitHub-hosted security advisory.
Advisory available under CC0-1.0
license.