CVE-2021-46052Reachable Assertion in Binaryen

CWE-617Reachable Assertion4 documents4 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 84.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Webassembly BinaryenDebian Binaryen
Timeline
PublishedJan 10
Latest updateJan 11

Description

A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-vv4j-xqg9-j5g3: A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate2022-01-11
OSV
CVE-2021-46052: A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate2022-01-10

📋Vendor Advisories

1
Debian
CVE-2021-46052: binaryen - A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abo...2021
CVE-2021-46052 — Reachable Assertion in Binaryen | cvebase