Lucene search

GitHub_MCVELIST:CVE-2024-43366

HistoryAug 15, 2024 - 8:11 p.m.

CVE-2024-43366 zkvyper ignored loop range bounds

2024-08-1520:11:56

CWE-835

GitHub_M

www.cve.org

zkvyper

vyper compiler

bounds issue

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

Percentile

9.5%

JSON

zkvyper is a Vyper compiler. Starting in version 1.3.12 and prior to version 1.5.3, since LLL IR has no Turing-incompletness restrictions, it is compiled to a loop with a much more late exit condition. It leads to a loss of funds or other unwanted behavior if the loop body contains it. However, more real-life use cases like iterating over an array are not affected. No contracts were affected by this issue, which was fixed in version 1.5.3. Upgrading and redeploying affected contracts is the only way to avoid the vulnerability.

CNA Affected

[
  {
    "vendor": "matter-labs",
    "product": "era-compiler-vyper",
    "versions": [
      {
        "version": ">= 1.3.12, < 1.5.3",
        "status": "affected"
      }
    ]
  }
]

References

github.com/matter-labs/era-compiler-vyper/security/advisories/GHSA-8j77-7rrv-6pxx

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

Percentile

9.5%

JSON

Related for CVELIST:CVE-2024-43366