How severe is CVE-2022-43282?

CVE-2022-43282 has a CVSS v3 score of 7.1 (HIGH).

CVE-2022-43282

Name: wabt
Author: webassembly

7.1HIGH

Publicado: 10/28/2022Actualizado: 5/8/2025

wasm-interp v1.0.29 was discovered to contain an out-of-bounds read via the component OnReturnCallIndirectExpr->GetReturnCallDropKeepCount.

webassemblywabt

1.0.29

https://github.com/WebAssembly/wabt/issues/1983
ExploitIssue TrackingPatchThird Party Advisory
https://github.com/WebAssembly/wabt/issues/1983
ExploitIssue TrackingPatchThird Party Advisory