{"id":"CVE-2024-34251","details":"An out-of-bound memory read vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause a denial of service via the \"block_type_get_arity\" function in core/iwasm/interpreter/wasm.h.","modified":"2026-03-14T12:33:40.536377Z","published":"2024-05-06T16:15:14.083Z","references":[{"type":"REPORT","url":"https://github.com/bytecodealliance/wasm-micro-runtime/issues/3347"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/bytecodealliance/wasm-micro-runtime","events":[{"introduced":"0"},{"last_affected":"7bdea3c2ae1f23683299c008bd5093ccaeb5f7b1"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.0.0"}]}}],"versions":["01-12-2020","WAMR-01-18-2022","WAMR-01-29-2021","WAMR-02-18-2020","WAMR-02-27-2020","WAMR-03-05-2020","WAMR-03-19-2020","WAMR-03-25-2021","WAMR-03-30-2020","WAMR-04-15-2020","WAMR-04-15-2021","WAMR-05-18-2022","WAMR-06-15-2020","WAMR-07-10-2020","WAMR-08-10-2021","WAMR-09-08-2020","WAMR-09-29-2020","WAMR-1.0.0","WAMR-1.1.0","WAMR-1.1.1","WAMR-1.1.2","WAMR-1.2.0","WAMR-1.2.1","WAMR-1.2.2","WAMR-1.2.3","WAMR-1.3.0","WAMR-1.3.1","WAMR-1.3.2","WAMR-12-30-2021","WAMR-2.0.0","tag-11-28-2019"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-34251.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}