Vulnerability Database

314,453

Total vulnerabilities in the database

CVE-2024-28123

Wasmi is an efficient and lightweight WebAssembly interpreter with a focus on constrained and embedded systems. In the WASMI Interpreter, an Out-of-bounds Buffer Write will arise if the host calls or resumes a Wasm function with more parameters than the default limit (128), as it will surpass the stack value. This doesn’t affect calls from Wasm to Wasm, only from host to Wasm. This vulnerability was patched in version 0.31.1.

Published: Mar 21, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-28123
GHSA: GHSA-75jp-vq8x-h4cq
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
wasmi	0.15.0	0.31.1
wasmi-labs / wasmi	0.15.0	0.31.1

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo