Lucene search
K

4 matches found

Code423n4
Code423n4
added 2022/06/17 12:0 a.m.12 views

receive function is unrestricted

Lines of code Vulnerability details Impact The receive function has not placed any restriction which means if any user accidentally sends any ETH to this contract then it is permanently freezed until timelock decides to release it by creating and approving a new transaction on timelock which...

6.8AI score
Exploits0
OSV
OSV
added 2021/08/30 4:12 p.m.9 views

GHSA-VRW4-W73R-6MM8 TimelockController vulnerability in OpenZeppelin Contracts

Impact A vulnerability in TimelockController allowed an actor with the executor role to take immediate control of the timelock, by resetting the delay to 0 and escalating privileges, thus gaining unrestricted access to assets held in the contract. Instances with the executor role set to "open"...

10CVSS5.9AI score0.0159EPSS
Exploits0References5
OSV
OSV
added 2021/08/30 4:12 p.m.3 views

GHSA-FG47-3C2X-M2WR TimelockController vulnerability in OpenZeppelin Contracts

Impact A vulnerability in TimelockController allowed an actor with the executor role to take immediate control of the timelock, by resetting the delay to 0 and escalating privileges, thus gaining unrestricted access to assets held in the contract. Instances with the executor role set to "open"...

10CVSS5.9AI score0.0159EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/08/26 12:0 a.m.4 views

OpenZepplin 安全漏洞

OpenZepplin is a library for smart contract development. OpenZepplin has a security vulnerability that stems from a vulnerability in the TimelockController in the affected version that allows elevation of privilege for participants with the executor role...

10CVSS8.3AI score0.0159EPSS
Exploits0References4
Rows per page
Query Builder