3 matches found
_claim function vulnerable to cross-chain-replay attacks
Lines of code Vulnerability details If there's a fork, since anyone can call claim, an attacker can monitor the blockchain for calls to claim, and then make the same call with the same arguments on the other chain. Proof of Concept There are no EIP-712 protections in the encoding: bytes32 leafHas...
PT-2021-16810 · Cosmos Network · Ethermint
Name of the Vulnerable Software and Affected Versions: Cosmos Network Ethermint versions = v0.4.0 Description: The issue is related to a cross-chain transaction replay vulnerability in the EVM module. This vulnerability is caused by the use of the same chainID and signature schemes with Ethereum...
KamiD Cosmos Network Ethermint Security Vulnerability
KamiD Cosmos Network Ethermint is a pre-alpha software from the American Bcamarneiro KamiD personal organization. It provides a scalable, high-throughput proof-of-stake blockchain that is fully compatible and interoperable with Ethermint. A security vulnerability exists in KamiD Cosmos Network...