VYPR

crates.io package

wasmer

pkg:cargo/wasmer

Vulnerabilities (1)

  • CVE-2024-38358LowJun 19, 2024
    affected <= 4.3.1

    Wasmer is a web assembly (wasm) Runtime supporting WASIX, WASI and Emscripten. If the preopened directory has a symlink pointing outside, WASI programs can traverse the symlink and access host filesystem if the caller sets both `oflags::creat` and `rights::fd_write`. Programs can