AIKIDO-2025-10080
github.com/cosmwasm/wasmvm is vulnerable to NULL Pointer Dereference
65
Medium
github.com/cosmwasm/wasmvm GO
AIKIDO-2025-10080: github.com/cosmwasm/wasmvm is vulnerable to NULL Pointer Dereference in versions 0.10.0 - 1.5.7, 2.0.0 - 2.0.5, 2.1.0 - 2.1.4 and 2.2.0 - 2.2.1.
NULL Pointer Dereference
Vuln in 0.10.0 - 1.5.7
Fixed in 1.5.8
Vuln in 2.0.0 - 2.0.5
Fixed in 2.0.6
Vuln in 2.1.0 - 2.1.4
Fixed in 2.1.5
Vuln in 2.2.0 - 2.2.1
Fixed in 2.2.2
No CVE available
TL;DR
Who does this affect?
How can it be fixed?
Background info
Don’t be left in the dark
With in-house intel and access to top vulnerability databases, see it all with Aikido.
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
🇪🇺 Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
🇺🇸 Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US
Any use of the intel.aikido.dev website and content is explicitly subject to Aikido Terms of Use.
The Intel vulnerability and malware feed is licensed under a dual license.