CVE-2024-35410

Name of the Vulnerable Software and Affected Versions wac version 385e1

Description A heap overflow vulnerability was discovered in the interpret function at /wac-asan/wa.c, allowing attackers to cause a Denial of Service (DoS) via a crafted wasm file.

Recommendations For version 385e1, consider disabling the interpret function at /wac-asan/wa.c as a temporary workaround until a patch is available. Restrict access to crafted wasm files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.