wasm3_project CVE Vulnerabilities & Metrics

Focus on wasm3_project vulnerabilities and metrics.

Last updated: 27 Apr 2025, 22:25 UTC

About wasm3_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with wasm3_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total wasm3_project CVEs: 12
Earliest CVE date: 12 Aug 2021, 02:15 UTC
Latest CVE date: 06 May 2024, 16:15 UTC

Latest CVE reference: CVE-2024-34246

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 3

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical wasm3_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 2.23

Max CVSS: 5.0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	6
4.0-6.9	6
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS wasm3_project CVEs

These are the five CVEs with the highest CVSS scores for wasm3_project, sorted by severity first and recency.

CVE-2021-38592 wasm3_project Published on 12 Aug 2021, 02:15 UTC (CVSS: 5.0)
Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule).
CVE-2022-28990 wasm3_project Published on 20 May 2022, 19:15 UTC (CVSS: 4.6)
WASM3 v0.5.0 was discovered to contain a heap overflow via the component /wabt/bin/poc.wasm.
CVE-2022-28966 wasm3_project Published on 16 Apr 2022, 16:15 UTC (CVSS: 4.3)
Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirectly from Compile_BranchTable in m3_compile.c).
CVE-2021-45947 wasm3_project Published on 01 Jan 2022, 00:15 UTC (CVSS: 4.3)
Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and InitDataSegments).
CVE-2021-45946 wasm3_project Published on 01 Jan 2022, 00:15 UTC (CVSS: 4.3)
Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and CompileBlockStatements).

All CVEs for wasm3_project

CVE-2024-34246 wasm3_project vulnerability CVSS: 0 06 May 2024, 16:15 UTC

wasm3 v0.5.0 was discovered to contain an out-of-bound memory read which leads to segmentation fault via the function "main" in wasm3/platforms/app/main.c.

CVE-2024-34252 wasm3_project vulnerability CVSS: 0 06 May 2024, 15:15 UTC

wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault via the function "PreserveRegisterIfOccupied" in wasm3/source/m3_compile.c.

CVE-2024-34249 wasm3_project vulnerability CVSS: 0 06 May 2024, 15:15 UTC

wasm3 v0.5.0 was discovered to contain a heap buffer overflow which leads to segmentation fault via the function "DeallocateSlot" in wasm3/source/m3_compile.c.

CVE-2022-44874 wasm3_project vulnerability CVSS: 0 13 Dec 2022, 23:15 UTC

wasm3 commit 7890a2097569fde845881e0b352d813573e371f9 was discovered to contain a segmentation fault via the component op_CallIndirect at /m3_exec.h.

CVE-2022-39974 wasm3_project vulnerability CVSS: 0 20 Sep 2022, 18:15 UTC

WASM3 v0.5.0 was discovered to contain a segmentation fault via the component op_Select_i32_srs in wasm3/source/m3_exec.h.

CVE-2022-34529 wasm3_project vulnerability CVSS: 0 27 Jul 2022, 14:15 UTC

WASM3 v0.5.0 was discovered to contain a segmentation fault via the component Compile_Memory_CopyFill.

CVE-2022-28990 wasm3_project vulnerability CVSS: 4.6 20 May 2022, 19:15 UTC

WASM3 v0.5.0 was discovered to contain a heap overflow via the component /wabt/bin/poc.wasm.

CVE-2022-28966 wasm3_project vulnerability CVSS: 4.3 16 Apr 2022, 16:15 UTC

Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirectly from Compile_BranchTable in m3_compile.c).

CVE-2021-45947 wasm3_project vulnerability CVSS: 4.3 01 Jan 2022, 00:15 UTC

Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and InitDataSegments).

CVE-2021-45946 wasm3_project vulnerability CVSS: 4.3 01 Jan 2022, 00:15 UTC

Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and CompileBlockStatements).

CVE-2021-45929 wasm3_project vulnerability CVSS: 4.3 01 Jan 2022, 00:15 UTC

Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from CompileElseBlock and Compile_If).

CVE-2021-38592 wasm3_project vulnerability CVSS: 5.0 12 Aug 2021, 02:15 UTC

Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule).