Samsung Walrus WebAssembly Runtime Vulnerable to Segmentation Fault
CVE-2024-32673

5.5MEDIUM

Key Information:

Vendor

Samsung Open Source

Status
Walrus
Vendor
CVE Published:
3 July 2024

What is CVE-2024-32673?

Improper Validation of Array Index vulnerability in Samsung Open Source Walrus Webassembly runtime engine allows a segmentation fault issue.

This issue affects Walrus: before 72c7230f32a0b791355bbdfc78669701024b0956.

Affected Version(s)

Walrus 0

References

https://github.com/Samsung/walrus/pull/241
patch

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Sangwoo Park
Jeongmin Choi
.