CVE-2025-62711
EPSS 0.01%Possible host crash with host-to-wasm component intrinsics
Published: 10/27/2025Modified: 10/25/2025
Description
This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-4h67-722j-5pmc For more information see the GitHub-hosted security advisory.
Affected packages (2)
- crates.io/wasmtime>= 38.0.0, < 38.0.3
- crates.io/wasmtime>= 38.0.0, < 38.0.3
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L |
References (7)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2025-62711
- PATCHhttps://crates.io/crates/wasmtime
- PATCHhttps://github.com/bytecodealliance/wasmtime
- WEBhttps://github.com/bytecodealliance/wasmtime/commit/192f2fcdadfec9d0cf6b58548a85a7307450cbf5
- WEBhttps://github.com/bytecodealliance/wasmtime/pull/11592
- WEBhttps://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-4h67-722j-5pmc
- WEBhttps://rustsec.org/advisories/RUSTSEC-2025-0112.html