Wiz
Vulnerability DatabaseCVE-2023-27117

CVE-2023-27117
Linux Debian vulnerability analysis and mitigation

Overview

WebAssembly v1.0.29 was discovered to contain a heap overflow vulnerability via the component wabt::Node::operator. The vulnerability was identified and disclosed in September 2022, affecting the WebAssembly Binary Toolkit (WABT) (GitHub Issue).

Technical details

The vulnerability exists in the wabt::Node::operator component of WebAssembly v1.0.29, specifically in the decompiler-ast.h file. When triggered, it causes a heap-buffer-overflow on address 0x610000000010, resulting in a READ operation of size 4. The issue was discovered during testing with Address Sanitizer (ASAN) and has been assigned a CVSS score of 7.8, indicating high severity (CISA Bulletin).

Impact

The heap overflow vulnerability could lead to memory corruption and potential crashes in the WebAssembly Binary Toolkit. This could affect systems and applications that rely on WABT for WebAssembly binary manipulation and translation (Debian Tracker).

Mitigation and workarounds

The vulnerability affects WABT version 1.0.29 and has been identified in multiple Linux distributions including Debian bullseye (1.0.20-1), bookworm (1.0.32-1), and sid/trixie versions. Users are advised to update to patched versions when available (Debian Tracker).

Additional resources

SourceThis report was generated using AI

Related Linux Debian vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-61729HIGH7.5
  • DockerDocker
  • go
NoYesDec 02, 2025
CVE-2025-66293HIGH7.1
  • OpenJDK JDKOpenJDK JDK
  • java-17-openjdk-headless-slowdebug
NoNoDec 03, 2025
CVE-2025-39665MEDIUM6.9
  • Linux DebianLinux Debian
  • nagvis
NoNoDec 03, 2025
CVE-2025-61727MEDIUM6.5
  • DockerDocker
  • golang-1.24
NoYesDec 03, 2025
CVE-2025-66453MEDIUM5.5
  • JavaJava
  • org.mozilla:rhino
NoYesDec 03, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo