CVE-2024-27528: pywasm3 has an Invalid Memory Read, Leading to DoS and Potential Code Execution

November 9, 2024 (updated June 9, 2026)

wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution.

References

gist.github.com/haruki3hhh/baa757c4af4fefb410d9c74d7a68152e
github.com/advisories/GHSA-mhg9-mm8c-c683
github.com/pypa/advisory-database/tree/main/vulns/pywasm3/PYSEC-2024-304.yaml
github.com/wasm3/pywasm3/blob/main/wasm3/m3_exec.h
github.com/wasm3/wasm3/issues/463
nvd.nist.gov/vuln/detail/CVE-2024-27528

Code Behaviors & Features

Detect and mitigate CVE-2024-27528 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →