GO-2022-0813 Authentication bypass by capture-replay in github.com/cosmos/ethermint

Authentication bypass by capture-replay in github.com/cosmos/ethermint...

PT-2021-16809 · Cosmos +1 · Cosmos Network Ethermint +1

Name of the Vulnerable Software and Affected Versions: Cosmos Network Ethermint versions = v0.4.0 Description: The issue is related to a transaction replay vulnerability in the EVM module. If a victim sends a very large nonce transaction, an attacker can replay the transaction through the...

PT-2021-16810 · Cosmos Network · Ethermint

Name of the Vulnerable Software and Affected Versions: Cosmos Network Ethermint versions = v0.4.0 Description: The issue is related to a cross-chain transaction replay vulnerability in the EVM module. This vulnerability is caused by the use of the same chainID and signature schemes with Ethereum...

Cosmos Network Ethermint Security Vulnerability

Cosmos Network Ethermint is a scalable, high-throughput Proof-of-Stake blockchain from Cosmos Network, Inc. It is fully compatible and interoperable with Ethermint. It is built using the Cosmos SDK, which runs on top of the Tendermint Core consensus engine. A security vulnerability exists in Cosm...