Webassembly Webassembly Binary Toolkit — known CVE vulnerabilities
Every CVE whose affected-product data names Webassembly Webassembly Binary Toolkit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-31670 — CVSS 7.5 (high): An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and wasm-validate 1.0.32 allows attackers to cause a Denial of Service…
CVE-2023-31669 — CVSS 5.5 (medium): WebAssembly wat2wasm v1.0.32 allows attackers to cause a libc++abi.dylib crash by putting '@' before a quote (").
CVE-2023-46331 — CVSS 5.5 (medium): WebAssembly wabt 1.0.33 has an Out-of-Bound Memory Read in in DataSegment::IsValidRange(), which lead to segmentation fault.
CVE-2023-46332 — CVSS 5.5 (medium): WebAssembly wabt 1.0.33 contains an Out-of-Bound Memory Write in DataSegment::Drop(), which lead to segmentation fault.
CVE-2025-3122 — CVSS 3.1 (low): A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function…