5 matches found
Malicious code in @adminproxy/module-utils-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ab70491510a9c9834ba70e271572b29b68b7cb19d3a0511123f7d1aebc2b001 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @adminproxy/module-utils-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8a2cafa2022fe884b6ebbf6b805ed194ed4b93c8b77b15f7d03940e069c9137 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @adminproxy/module-utils-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbdecb9253986cff5b752fb6e685010877c7e57ebcc7c19461ac03578f80b3c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Upgraded Q -> 2 from #823 [1677594201547]
Judge has assessed an item in Issue 823 as 2 risk. The relevant finding follows: L-01 Low level call result not correctly checked The last adminProxy.execute is not checked for success. function deployAdapter DeploymentArgs memory adapterData, bytes memory baseAdapterData, IDeploymentController...
AdminProxy should do some extra security checks
Lines of code Vulnerability details Impact AdminProxy is the hot spot for all low-level calls, therefore it should do some extra security checks that are currently not in place. By design a Solidity low level call to a zero address or an EOA non contract address will return success true. The only...