CVE-2025-53901 | bytecodealliance wasmtime up to 24.0.3/33.0.1/34.0.1 WASIp1 path_open operation after expiration

A vulnerability was found in bytecodealliance wasmtime up to 24.0.3/33.0.1/34.0.1. It has been classified as problematic. Affected is the function path_open of the component WASIp1 Handler. The manipulation leads to operation on a resource after expiration.

This vulnerability is traded as CVE-2025-53901. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More