CVE-2024-35426

vmir e8117 was discovered to contain a stack overflow via the init_local_vars function at /src/vmir_wasm_parser.c.
References
Link Resource
https://gist.github.com/haruki3hhh/9d2a5a139a8b72517009953d0ba7338c Third Party Advisory
https://github.com/andoma/vmir/issues/24 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:lonelycoder:vmir:2018-08-28:*:*:*:*:*:*:*

History

05 Jun 2025, 15:35

Type Values Removed Values Added
First Time Lonelycoder
Lonelycoder vmir
CPE cpe:2.3:a:lonelycoder:vmir:2018-08-28:*:*:*:*:*:*:*
References () https://gist.github.com/haruki3hhh/9d2a5a139a8b72517009953d0ba7338c - () https://gist.github.com/haruki3hhh/9d2a5a139a8b72517009953d0ba7338c - Third Party Advisory
References () https://github.com/andoma/vmir/issues/24 - () https://github.com/andoma/vmir/issues/24 - Exploit, Issue Tracking, Third Party Advisory

18 Mar 2025, 15:15

Type Values Removed Values Added
CWE CWE-120

12 Nov 2024, 15:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

12 Nov 2024, 13:56

Type Values Removed Values Added
Summary
  • (es) Se descubrió que vmir e8117 contiene un desbordamiento de pila a través de la función init_local_vars en /src/vmir_wasm_parser.c.

08 Nov 2024, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-08 23:15

Updated : 2025-06-05 15:35


NVD link : CVE-2024-35426

Mitre link : CVE-2024-35426

CVE.ORG link : CVE-2024-35426


JSON object : View

Products Affected

lonelycoder

  • vmir
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')