Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
{ "cpes": [ "cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*" ], "severity": "Critical" }