8 matches found
Sandbox bypass in constantinople
constantinople before 3.1.1 affected by a sandbox bypass...
GHSA-HG7C-66FF-9Q8G Sandbox bypass in constantinople
constantinople before 3.1.1 affected by a sandbox bypass...
Arbitrary Code Execution
constantinople is vulnerable to Arbitrary Code Execution. The library uses Function to evaluate the code expression, allowing an attacker to attempt a sandbox bypass which can lead to arbitrary code execution...
GHSA-4VMM-MHCQ-4X9J Sandbox Bypass Leading to Arbitrary Code Execution in constantinople
Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later...
04_nodeblog (=1.0.0), 10tcl (>=0.0.1 <=0.0.10) +3903 more potentially affected by unknown CVE via constantinople (>=1.0.2 <=3.0.2)
constantinople NPM version =1.0.2, =0.0.1, =1.0.1, =0.1.1, =0.0.1, =0.0.7, =1.0.23, =1.0.0, =1.0.0, =1.1.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-4VMM-MHCQ-4X9J...
Sandbox Bypass Leading to Arbitrary Code Execution in constantinople
Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later...
Sandbox Bypass Leading to Arbitrary Code Execution
Overview Versions of constantinople prior to 3.1.1 are vulnerable to a sandbox bypass which can lead to arbitrary code execution. Recommendation Update to version 3.1.1 or later. References GitHub Advisory...
CPP-Ethereum libevm create2 Information Leak Vulnerability(CVE-2017-14457)
Summary An exploitable information leak / denial of service vulnerability exists in the libevm Ethereum Virtual Machine create2 opcode handler of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read leading to memory disclosure or denial of service. An attacker ca...