CVE-2024-32673

July 3, 2024, 12:53 p.m.

Tags

CWE-129
PSIRT@samsung.com
2024-07-03
CVE-2024-32673

Product(s) Impacted

Walrus Webassembly runtime engine

  • before 72c7230f32a0b791355bbdfc78669701024b0956

Description

Improper Validation of Array Index vulnerability in Samsung Open Source Walrus Webassembly runtime engine allows a segmentation fault issue. This issue affects Walrus: before 72c7230f32a0b791355bbdfc78669701024b0956.

Weaknesses

CWE-129
Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

CWE ID: 129

Date

Published: July 3, 2024, 2:15 a.m.

Last Modified: July 3, 2024, 12:53 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

PSIRT@samsung.com

References

https://github.com/Samsung/walrus/pull/241
PSIRT@samsung.com