Lucene search

CVE-2023-37902

🗓️ 25 Jul 2023 21:10:15Reported by GoogleType

osv🔗 osv.dev👁 8 Views

Vyper compiler prior to 0.3.10 allows passing invalid signatur

Reporter	Title	Published	Views	Family All 9
CVE	CVE-2023-37902	25 Jul 202321:15	–	cve
Veracode	Insecure Signature Verification	26 Jul 202309:46	–	veracode
Vulnrichment	CVE-2023-37902 Vyper's ecrecover can return undefined data if signature does not verify	25 Jul 202320:05	–	vulnrichment
Prion	Design/Logic Flaw	25 Jul 202321:15	–	prion
NVD	CVE-2023-37902	25 Jul 202321:15	–	nvd
OSV	ecrecover can return undefined data if signature does not verify	25 Jul 202317:46	–	osv
OSV	PYSEC-2023-133	25 Jul 202321:15	–	osv
Cvelist	CVE-2023-37902 Vyper's ecrecover can return undefined data if signature does not verify	25 Jul 202320:05	–	cvelist
Github Security Blog	ecrecover can return undefined data if signature does not verify	25 Jul 202317:46	–	github

Source	Link
github	www.github.com/vyperlang/vyper/security/advisories/GHSA-f5x6-7qgp-jhf3
github	www.github.com/vyperlang/vyper/commit/019a37ab98ff53f04fecfadf602b6cd5ac748f7f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Jul 2023 21:15Current

7.2High risk

Vulners AI Score7.2

CVSS35.3

EPSS0.00069

SSVC