GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
2 advisories
Wasmtime: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift
Critical
CVE-2026-34971
was published
for
wasmtime
(Rust)
Apr 9, 2026
Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory access
Critical
CVE-2026-34987
was published
for
wasmtime
(Rust)
Apr 10, 2026
ProTip!
Advisories are also available from the
GraphQL API