How severe is CVE-2019-7704?

CVE-2019-7704 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-7704

Name: binaryen
Author: webassembly

6.5MEDIUM

wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.

Publicado: 2/10/2019Actualizado: 11/21/2024

Descripción

wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.

Análisis IAImpulsado por IA

Productos Afectados

webassemblybinaryen

Referencias

https://github.com/WebAssembly/binaryen/issues/1866
ExploitPatchThird Party Advisory
https://github.com/WebAssembly/binaryen/issues/1866
ExploitPatchThird Party Advisory