Denial of Service Vulnerability in Binaryen by WebAssembly
CVE-2021-46055

5.5MEDIUM

Key Information:

Vendor: Webassembly
Status: Binaryen
Vendor: CVE Published:; 10 January 2022

🔔 Create Webassembly Vulnerability Alert

What is CVE-2021-46055?

A Denial of Service vulnerability has been identified in Binaryen version 104. This vulnerability arises from an assertion abort in the wasm::WasmBinaryBuilder::visitRethrow function, which can potentially disrupt the normal operation of applications using this tool. Users of Binaryen are encouraged to update their systems and review code for opportunities to mitigate the impact of this vulnerability.

References

https://github.com/WebAssembly/binaryen/issues/4413

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 10, 2022
Vulnerability Reserved
Jan 3, 2022

JSON