Bytecode Alliance · Wasm-Micro-Runtime · CVE-2023-48105
**Name of the Vulnerable Software and Affected Versions**
Bytecode alliance wasm-micro-runtime version 1.2.3
**Description**
A heap overflow issue was discovered, allowing a remote attacker to cause a denial of service via the `wasm loader prepare bytecode` function in core/iwasm/interpreter/wasm loader.c.
**Recommendations**
For Bytecode alliance wasm-micro-runtime version 1.2.3, consider disabling the `wasm loader prepare bytecode` function as a temporary workaround until a patch is available.