An out-of-bound memory read vulnerability exists in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote malicious user to cause a denial of service via the "block_type_get_arity" function in core/iwasm/interpreter/wasm.h.