Name of the Vulnerable Software and Affected Versions:

WebAssembly Micro Runtime (WAMR) iwasm versions 2.4.0 and below

Description:

The iwasm package uses the `--addr-pool` option with an IPv4 address lacking a subnet mask. This configuration allows the system to accept all IP addresses, potentially exposing the service to unintended external connections and bypassing intended access restrictions. This may lead to unauthorized access, particularly in production deployments where users expect a secure configuration when specifying an IP address without a subnet mask.

Recommendations:

Update to version 2.4.1 or later.