The vulnerability of the constantinople application software of Avrora Center lies in the insufficient checking of input data, allowing attackers to execute arbitrary code.

The vulnerability of the constantinople application software of Avrora Center is related to insufficient verification of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

GHSA-HG7C-66FF-9Q8G Sandbox bypass in constantinople

constantinople before 3.1.1 affected by a sandbox bypass...

Sandbox bypass in constantinople

constantinople before 3.1.1 affected by a sandbox bypass...

Arbitrary Code Execution

constantinople is vulnerable to Arbitrary Code Execution. The library uses Function to evaluate the code expression, allowing an attacker to attempt a sandbox bypass which can lead to arbitrary code execution...

04_nodeblog (=1.0.0), 10tcl (>=0.0.1 <=0.0.10) +3906 more potentially affected by unknown CVE via constantinople (>=1.0.2 <=3.0.2)

constantinople NPM version =1.0.2, =0.0.1, =1.0.1, =0.1.1, =0.0.1, =0.0.7, =1.0.23, =1.0.0, =1.0.0, =1.1.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-4VMM-MHCQ-4X9J...

GHSA-4VMM-MHCQ-4X9J Sandbox Bypass Leading to Arbitrary Code Execution in constantinople

Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later...

Sandbox Bypass Leading to Arbitrary Code Execution in constantinople

Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later...

Sandbox Bypass Leading to Arbitrary Code Execution

Overview Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later. References GitHub Advisory...

CPP-Ethereum libevm create2 Information Leak Vulnerability(CVE-2017-14457)

Summary An exploitable information leak / denial of service vulnerability exists in the libevm Ethereum Virtual Machine create2 opcode handler of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read leading to memory disclosure or denial of service. An attacker ca...