LOW 3.3 PyPI
pywasm3 has Improper Restriction of Operations within the Bounds of a Memory Buffer
GHSA-rrmw-gv85-w824 · CVE-2025-6272 · PYSEC-2025-186
Published · Modified
Description
A vulnerability has been found in wasm3 0.5.0 and classified as problematic. This vulnerability affects the function MarkSlotAllocated of the file source/m3_compile.c. The manipulation leads to out-of-bounds write. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-6272
- WEB https://github.com/wasm3/wasm3/issues/531
- WEB https://github.com/pypa/advisory-database/tree/main/vulns/pywasm3/PYSEC-2025-186.yaml
- WEB https://github.com/user-attachments/files/19516600/wasm3_crash.txt
- PACKAGE https://github.com/wasm3/pywasm3
- WEB https://github.com/wasm3/pywasm3/blob/main/wasm3/m3_compile.c#L333
- WEB https://vuldb.com/?ctiid.313276
- WEB https://vuldb.com/?id.313276
- WEB https://vuldb.com/?submit.593008
Ready to move
Start Securing
Free, no credit card | First findings in minutes