Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18117

Malicious code in bioql PyPI...

6.6AI score
Exploits0References3
OSV
OSV
added 2025/06/11 2:44 p.m.4 views

GHSA-79XG-Q4QM-7V9W CWA-2025-006: wasmd's improper error handling may lead to IBC channel opening despite error

CWA-2025-006: Improper error handling may lead to IBC channel opening despite error Severity High Considerable + Likely^1 Affected versions: - wasmd 0.60.0 - wasmd = 0.51.0 0.55.1 Patched versions: - wasmd 0.60.1, 0.55.1, 0.54.1, 0.53.3 Description of the bug A contract erroring during IBC channe...

6.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/06/11 2:44 p.m.12 views

CWA-2025-006: wasmd's improper error handling may lead to IBC channel opening despite error

CWA-2025-006: Improper error handling may lead to IBC channel opening despite error Severity High Considerable + Likely^1 Affected versions: - wasmd 0.60.0 - wasmd = 0.51.0 0.55.1 Patched versions: - wasmd 0.60.1, 0.55.1, 0.54.1, 0.53.3 Description of the bug A contract erroring during IBC channe...

6.9AI score
Exploits0References3Affected Software1
Snyk
Snyk
added 2025/03/12 7:29 p.m.2 views

Deserialization of Untrusted Data

Overview github.com/cosmos/ibc-go/modules/core/04-channel/keeper is an interblockchain communication protocol IBC implementation in Golang built as a SDK module. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to inconsistencies in the deserialization...

9.6CVSS7AI score
Exploits0References4
Snyk
Snyk
added 2025/03/12 7:29 p.m.3 views

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to inconsistencies in the deserialization process of acknowledgments, leading to non-deterministic behavior that can halt a blockchain network. Note: This is only exploitable if the attacker has the...

9.6CVSS7AI score
Exploits0References4
Snyk
Snyk
added 2025/03/12 7:29 p.m.3 views

Deserialization of Untrusted Data

Overview github.com/cosmos/ibc-go/v10/modules/core/04-channel/keeper is an interblockchain communication protocol IBC implementation in Golang built as a SDK module. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to inconsistencies in the deserialization...

9.6CVSS7AI score
Exploits0References4
Snyk
Snyk
added 2025/03/12 7:29 p.m.3 views

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to inconsistencies in the deserialization process of acknowledgments, leading to non-deterministic behavior that can halt a blockchain network. Note: This is only exploitable if the attacker has the...

9.6CVSS7AI score
Exploits0References4
OSV
OSV
added 2025/02/28 5:46 p.m.16 views

GHSA-JG6F-48FF-5XRW IBC-Go has Non-deterministic JSON Unmarshalling of IBC Acknowledgement

Name: ASA-2025-004: Non-deterministic JSON Unmarshalling of IBC Acknowledgement can result in a chain halt Component: IBC-Go Criticality: Critical Considerable Impact; Almost Certain Likelihood per ACMv1.2 Affected versions: IBC-Go = v7; Earlier IBC-Go versions may also be affected. Affected user...

9.3CVSS7AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/02/28 12:0 a.m.7 views

PT-2025-9199 · Ibc-Go · Ibc-Go

Name of the Vulnerable Software and Affected Versions: IBC-Go versions 7 and later Description: An issue was discovered in IBC-Go's deserialization of acknowledgements, resulting in non-deterministic behavior that can halt a chain. Any user who can open an IBC channel can introduce this state to...

9.3CVSS7.2AI score
Exploits0References5
Prion
Prion
added 2022/11/17 10:15 p.m.18 views

Design/Logic Flaw

Lightning Network Daemon lnd is an implementation of a lightning bitcoin overlay network node. All lnd nodes before version v0.15.4 are vulnerable to a block parsing bug that can cause a node to enter a degraded state once encountered. In this degraded state, nodes can continue to make payments a...

6.4CVSS6.3AI score0.00999EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder