Nixpkgs security tracker

Login with GitHub

Suggestions search

Untriaged
Filter by:
With package: wasm3

Found 1 matching suggestions

View:
Compact
Detailed
Permalink CVE-2025-15572
3.3 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Exploit Code Maturity (E): Proof-of-Concept (P)
  • Remediation Level (RL): Not Defined (X)
  • Report Confidence (RC): Reasonable (R)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 3 months, 2 weeks ago by @LeSuisse Activity log
  • Created suggestion 3 months, 2 weeks ago
  • @LeSuisse ignored
    2 packages
    • tests.buildRustCrate.tests.crateLibOutputsWasm32
    • tests.buildRustCrate.tests.crateWasm32BinHyphens
    3 months, 2 weeks ago
wasm3 NewCodePage memory leak

A vulnerability has been found in wasm3 up to 0.5.0. The affected element is the function NewCodePage. The manipulation leads to memory leak. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Unfortunately, the project has no active maintainer at the moment.

Affected products

wasm3
  • ==0.1
  • ==0.4
  • ==0.5.0
  • ==0.2
  • ==0.3

Matching in nixpkgs

pkgs.wasm3

Fastest WebAssembly interpreter, and the most universal runtime

Ignored packages (2)

Package maintainers