wasmtime vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-44216Mediumwasmtime: wasmtime has a panic when allocating a table exceeding the size of the host's address spaceCVE-2026-35186Mediumwasmtime: Wasmtime has improperly masked return value from `table.grow` with Winch compiler backendCVE-2026-34987Criticalwasmtime: Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory accessCVE-2026-35195Mediumwasmtime: Wasmtime has out-of-bounds write or crash when transcoding component model stringsCVE-2026-34988Lowwasmtime: Wasmtime has data leakage between pooling allocator instancesCVE-2026-34983Lowwasmtime: Wasmtime has use-after-free bug after cloning `wasmtime::Linker`CVE-2026-34971Criticalwasmtime: Wasmtime: Miscompiled guest heap access enables sandbox escape on aarch64 CraneliftCVE-2026-34946Mediumwasmtime: Wasmtime has host panic when Winch compiler executes `table.fill`CVE-2026-34945Lowwasmtime: Wasmtime has host data leakage with 64-bit tables and WinchCVE-2026-34944Mediumwasmtime: Wasmtime segfault or unused out-of-sandbox load with `f64x2.splat` operator on x86-64 CVE-2026-34943Mediumwasmtime: Wasmtime has a possible panic when lifting `flags` component valueCVE-2026-34942Mediumwasmtime: Wasmtime: Panic when transcoding misaligned utf-16 stringsCVE-2026-34941Mediumwasmtime: Wasmtime: Heap OOB read in component model UTF-16 to latin1+utf16 string transcodingCVE-2026-27572Mediumwasmtime: Wasmtime can panic when adding excessive fields to a `wasi:http/types.fields` instanceCVE-2026-27204Mediumwasmtime: Wasmtime WASI implementations are vulnerable to guest-controlled resource exhaustionCVE-2026-27195Mediumwasmtime: Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` futureCVE-2026-24116Mediumwasmtime: Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64CVE-2025-64345Lowwasmtime: Wasmtime provides unsound API access to a WebAssembly shared linear memoryCVE-2025-62711Lowwasmtime: Wasmtime vulnerable to segfault when using component resourcesCVE-2025-53901Lowwasmtime-wasi: Wasmtime CLI is vulnerable to host panic through its fd_renumber functionCVE-2024-51745Lowwasmtime: Wasmtime doesn't fully sandbox all the Windows device filenamesCVE-2024-47813Lowwasmtime: Wasmtime race condition could lead to WebAssembly control-flow integrity and type safety violationsCVE-2024-47763Mediumwasmtime: wasmtime has a runtime crash when combining tail calls with trapping importsCVE-2024-30266Lowwasmtime: Wasmtime vulnerable to panic when using a dropped extenref-typed element segmentCVE-2022-39394Lowwasmtime: wasmtime_trap_code C API function has out of bounds write vulnerability

Stop the waste.
Protect your environment with Kodem.