Lucene search
K

174 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:47 a.m.6 views

CVE-2023-32059

Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to version 0.3.8, internal calls with default arguments are compiled incorrectly. Depending on the number of arguments provided in the call, the defaults are added not right-to-left, but left-to-right. If the type...

7.5CVSS6.6AI score0.00725EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.6 views

CVE-2023-42443

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine EVM. In version 0.3.9 and prior, under certain conditions, the memory used by the builtins rawcall, createfromblueprint and createcopyof can be corrupted. For rawcall, the argument buffer of the call can be corrupted,...

8.1CVSS7AI score0.00696EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:9 p.m.10 views

CVE-2022-39354

SputnikVM, also called evm, is a Rust implementation of Ethereum Virtual Machine. A custom stateful precompile can use the isstatic parameter to determine if the call is executed in a static context via STATICCALL, and thus decide if stateful operations should be done. Prior to version 0.36.0, th...

7.5CVSS6.7AI score0.00538EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.5 views

CVE-2021-29511

evm is a pure Rust implementation of Ethereum Virtual Machine. Prior to the patch, when executing specific EVM opcodes related to memory operations that use evmcore::Memory::copylarge, the evm crate can over-allocate memory when it is not needed, making it possible for an attacker to perform...

6.5CVSS6.7AI score0.0128EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/21 12:0 a.m.4 views

VoteMate: a Decentralized Application for Scalable Electronic Voting on EVM-Based Blockchain

Voting is a cornerstone of democracy, allowing citizens to express their will and make collective decisions. With advancing technology, online voting is gaining popularity as it enables voting from anywhere with Internet access, eliminating the need for printed ballots or polling stations. Howeve...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/20 12:0 a.m.7 views

Sei Giga

We introduce the Sei Giga, a multi-concurrent producer parallelized execution EVM layer one blockchain. In an internal testnet Giga has achieved 5 gigagas/sec throughput and sub 400ms finality. Giga uses Autobahn for consensus with separate DA and consensus layers requiring f+1 votes for a PoA on...

7.1AI score
Exploits0
NVD
NVD
added 2025/05/15 6:15 p.m.36 views

CVE-2025-47774

Vyper is the Pythonic Programming Language for the Ethereum Virtual Machine. In versions up to and including 0.4.2rc1, the slice builtin can elide side effects when the output length is 0, and the source bytestring is a builtin msg.data or .code. The reason is that for these source locations, the...

6.3CVSS0.00384EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/15 5:24 p.m.9 views

CVE-2025-47285 Vyper's `concat()` builtin may elide side-effects for zero-length arguments

Vyper is the Pythonic Programming Language for the Ethereum Virtual Machine. In versions up to and including 0.4.2rc1, concat may skip evaluation of side effects when the length of an argument is zero. This is due to a fastpath in the implementation which skips evaluation of argument expressions...

6.3CVSS7.2AI score0.00371EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/04/30 12:0 a.m.7 views

A Comprehensive Study of Exploitable Patterns in Smart Contracts: from Vulnerability to Defense

With the rapid advancement of blockchain technology, smart contracts have enabled the implementation of increasingly complex functionalities. However, ensuring the security of smart contracts remains a persistent challenge across the stages of development, compilation, and execution...

7.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/29 12:0 a.m.7 views

VApps: Verifiable Applications at Internet Scale

Blockchain technology promises a decentralized, trustless, and interoperable infrastructure. However, widespread adoption remains hindered by issues such as limited scalability, high transaction costs, and the complexity of maintaining coherent verification logic across different blockchain layer...

7.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/16 12:0 a.m.9 views

OpDiffer: LLM-Assisted Opcode-Level Differential Testing of Ethereum Virtual Machine

As Ethereum continues to thrive, the Ethereum Virtual Machine EVM has become the cornerstone powering tens of millions of active smart contracts. Intuitively, security issues in EVMs could lead to inconsistent behaviors among smart contracts or even denial-of-service of the entire blockchain...

7.3AI score
Exploits0
Fedora
Fedora
added 2025/03/15 12:50 a.m.17 views

[SECURITY] Fedora 42 Update: vyper-0.4.1-1.fc42

Pythonic Smart Contract Language for the EVM...

9.1CVSS7.4AI score0.00643EPSS
Exploits3
CNNVD
CNNVD
added 2025/02/21 12:0 a.m.5 views

Vyper 安全漏洞

Vyper is a Pythonic smart contract language for EVM open sourced by vyperlang. A security vulnerability exists in Vyper that stems from multiple evaluations of an iterator expression, which could lead to abnormal program behavior...

7.5CVSS7.3AI score0.00412EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/02/04 11:43 p.m.6 views

CVE-2024-22419

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The concat built-in can write over the bounds of the memory buffer that was allocated for it and thus overwrite existing valid data. The root cause is that the buildIR for concat doesn't properly adhere to the API of co...

9.8CVSS7.3AI score0.0077EPSS
Exploits1References1
Veracode
Veracode
added 2024/10/15 10:23 a.m.8 views

Consensus Attack

github.com/ethereum/go-ethereum is vulnerable to a Consensus Attack. The vulnerability is due to Geth's pre-compiled dataCopy contract performing a shallow copy on invocation, which allows an attacker to manipulate Ethereum Virtual Machine EVM memory and cause a consensus mismatch between nodes...

7.1CVSS6.6AI score0.01081EPSS
Exploits0References3Affected Software1
Brave Browser
Brave Browser
added 2024/09/19 4:30 a.m.7 views

Brave Desktop 1.70.117 Security Fixes

Added simulation support for EVM transactions. - Added simulation support for Solana transactions. Upgraded Chromium to 129.0.6668.59 — refer to Google Chrome advisories for inherited CVEs...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/07/05 6:49 p.m.25 views

CVE-2024-39696 Evmos vulnerable to exploit of smart contract account and vesting

Evmos is a decentralized Ethereum Virtual Machine chain on the Cosmos Network. Prior to version 19.0.0, a user can create a vesting account with a 3rd party account EOA or contract as funder. Then, this user can create an authorization for the contract.CallerAddress, this is the authorization...

8.8CVSS6.5AI score0.00523EPSS
Exploits0References4
NVD
NVD
added 2024/06/17 2:15 p.m.18 views

CVE-2024-37159

Evmos is the Ethereum Virtual Machine EVM Hub on the Cosmos Network. This vulnerability allowed a user to create a validator using vested tokens to deposit the self-bond. This vulnerability is fixed in 18.0.0...

6.5CVSS0.00313EPSS
Exploits0References2
NVD
NVD
added 2024/06/17 2:15 p.m.23 views

CVE-2024-37158

Evmos is the Ethereum Virtual Machine EVM Hub on the Cosmos Network. Preliminary checks on actions computed by the clawback vesting accounts are performed in the ante handler. Evmos core, implements two different ante handlers: one for Cosmos transactions and one for Ethereum transactions. Checks...

8.1CVSS0.0044EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/17 2:3 p.m.16 views

CVE-2024-37159 Evmos is missing create validator check

Evmos is the Ethereum Virtual Machine EVM Hub on the Cosmos Network. This vulnerability allowed a user to create a validator using vested tokens to deposit the self-bond. This vulnerability is fixed in 18.0.0...

3.5CVSS6.8AI score0.00313EPSS
Exploits0References2
Rows per page
Query Builder