CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Spring Engineering•added 2026/04/02 12:0 a.m.•3 views

A Bootiful Podcast: Java developer advocate Ana-Maria Mihalceanu

I had a wonderful chat with Java Developer Advocate Ana-Maria Mihalceanu about Java Flight Recorder, Project Babylon, Project Panama, and so many other exciting things in the Java ecosystem...

5.9AI score

Exploits0

OSV•added 2025/12/15 7:37 p.m.•1 views

GO-2025-4214 Babylon Incorrect FP inactive accounting in costaking creates “phantom stake” that earns rewards after BTC unbond in github.com/babylonlabs-io/babylon

Babylon Incorrect FP inactive accounting in costaking creates “phantom stake” that earns rewards after BTC unbond in github.com/babylonlabs-io/babylon...

6.9AI score

OSV•added 2025/12/15 7:37 p.m.•1 views

GO-2025-4211 Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers in github.com/babylonlabs-io/babylon

Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers in github.com/babylonlabs-io/babylon...

6.9AI score

EUVD•added 2025/12/09 2:25 p.m.•1 views

EUVD-2025-201932

Babylon Incorrect FP inactive accounting in costaking creates “phantom stake” that earns rewards after BTC unbond...

6.4AI score

OSV•added 2025/12/08 10:20 p.m.•2 views

GHSA-M6WQ-66P2-C8PC Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers

Summary A vulnerability exists in Babylon’s BLS vote extension processing where a malicious active validator can submit a VoteExtension with the blockhash field omitted from the protobuf serialization. Because protobuf fields are optional, unmarshalling succeeds but leaves BlockHash as nil. Babyl...

8.7CVSS7.1AI score

OSV•added 2025/11/25 6:12 p.m.•0 views

GO-2025-4159 Babylon's BIP322 signature implementation is not fully compliant to the spec in github.com/babylonlabs-io/babylon

Babylon's BIP322 signature implementation is not fully compliant to the spec in github.com/babylonlabs-io/babylon...

6.8AI score

OSV•added 2025/11/25 6:12 p.m.•1 views

GO-2025-4157 Babylon's malformed vote extensions are not rejected in github.com/babylonlabs-io/babylon

Babylon's malformed vote extensions are not rejected in github.com/babylonlabs-io/babylon...

6.9AI score

Snyk•added 2025/11/24 11:34 p.m.•2 views

Improper Verification of Cryptographic Signature

Overview Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature due to improper enforcement of the SIGHASH value in the signature verification process. An attacker can submit non-compliant signatures that are incorrectly accepted as valid by providing...

6.9CVSS6.8AI score

EUVD•added 2025/11/24 11:34 p.m.•1 views

EUVD-2025-199101

Babylon's BIP322 signature implementation is not fully compliant to the spec...

6.4AI score

Snyk•added 2025/11/24 11:34 p.m.•1 views

Improper Verification of Cryptographic Signature

6.9CVSS6.8AI score

Snyk•added 2025/11/24 11:34 p.m.•1 views

Improper Verification of Cryptographic Signature

6.9CVSS6.8AI score

EUVD•added 2025/11/24 11:32 p.m.•1 views

EUVD-2025-199102

Babylon's malformed vote extensions are not rejected...

6.4AI score

Snyk•added 2025/11/24 11:32 p.m.•1 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to unknown fields that aren't checked. An attacker can disrupt consensus and cause all block proposals to be rejected by submitting specially crafted vote extensions with...

7CVSS6.7AI score

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2010-5184

Malware in sbrugna...

6.9CVSS6.4AI score0.00057EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-29389

Malicious code in bioql PyPI...

6.6AI score