4 matches found
@uniswap/universal-router-sdk (>=1.1.0 <=1.1.1) potentially affected by CVE-2022-48216 via @uniswap/universal-router (=1.0.1)
@uniswap/universal-router NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @uniswap/universal-router and may be impacted: - @uniswap/universal-router-sdk =1.1.0, =1.1.1 Source cves: CVE-2022-48216 Source advisory: OSV:GHSA-7M37-CX35-Q...
CVE-2022-48216
creationtimestamp| type| source ---|---|--- 2023-01-04 18:18:09+00:00| seen| https://t.me/cibsecurity/55890...
CVE-2022-48216
Uniswap Universal Router before 1.1.0 mishandles reentrancy. This would have allowed theft of funds...
CVE-2022-48216
The CVE-2022-48216 issue affects Uniswap Universal Router versions prior to 1.1.0. A reentrancy mishandling in the router could allow theft of funds. Impact is described as high (CVE metrics indicate network exposure with high confidentiality, integrity, and availability impact). Remediation per ...