CVE-2025-6272

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions wasm3 version 0.5.0

Description A vulnerability has been found in the function MarkSlotAllocated of the file source/m3 compile.c, leading to an out-of-bounds write. The manipulation can be exploited locally.

Recommendations For wasm3 version 0.5.0, consider disabling the MarkSlotAllocated function until a patch is available. Restrict access to the source/m3 compile.c file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-119

Related Identifiers

CVE-2025-6272

PYSEC-2025-186

Affected Products

Wasm3

CVE-2025-6272

Weakness Enumeration

Related Identifiers

Affected Products

References · 12