diff --git a/pkgs/development/interpreters/wasmer/default.nix b/pkgs/development/interpreters/wasmer/default.nix
index a509107ec163635..be5e524b832aaf7 100644
--- a/pkgs/development/interpreters/wasmer/default.nix
+++ b/pkgs/development/interpreters/wasmer/default.nix
@@ -5,6 +5,7 @@
 , llvmPackages
 , libffi
 , libxml2
+, fetchpatch
 , CoreFoundation
 , SystemConfiguration
 , Security
@@ -25,6 +26,14 @@ rustPlatform.buildRustPackage rec {
 
   cargoHash = "sha256-EpHM8YaT2Ty9IBX/gXEa9n8006A9Y5/fq/ueODxHlnc=";
 
+  patches = [
+    (fetchpatch {
+      name = "CVE-2024-38358.patch";
+      url = "https://github.com/wasmerio/wasmer/commit/ad4c9cd13de658114cb306262b717a6cb10b8263.patch";
+      hash = "sha256-2B/u5lvTxY8Ip6h4CDq31vhfIn5dqCmMMnSVA2XdTY8=";
+    })
+  ];
+
   nativeBuildInputs = [
     rustPlatform.bindgenHook
   ];