5 matches found
@0xabcdefg/smart-order-router (>=1.0.0 <=1.0.5), @0xabcdefg/universal-router-sdk (>=1.0.0 <=1.0.2) +903 more potentially affected by CVE-2022-35916 via @openzeppelin/contracts (>=4.6.0 <=4.7.1)
@openzeppelin/contracts NPM version =4.6.0, =1.0.0, =1.0.0, =3.24.7, =1.7.2, =1.0.0, =0.2.0, =4.14.3, =2.0.17, =0.0.1, =0.0.1, =0.0.1, =0.0.17 and more Source cves: CVE-2022-35916 Source advisory: OSV:GHSA-9J3M-G383-29QR...
@aragon/core-contracts (>=0.3.0-alpha <=3.0.0-alpha), @benddao/bend-downpayment (=1.0.0) +21 more potentially affected by CVE-2022-35916 via @openzeppelin/contracts-upgradeable (>=4.6.0 <=4.7.0)
@openzeppelin/contracts-upgradeable NPM version =4.6.0, =0.3.0-alpha, =1.2.0, =0.0.2, =0.1.0, =0.1.6, =0.1.0, =0.2.0 and more Source cves: CVE-2022-35916 Source advisory: OSV:GHSA-9J3M-G383-29QR...
CVE-2022-35916
creationtimestamp| type| source ---|---|--- 2022-08-02 00:17:34+00:00| seen| https://t.me/cibsecurity/47389...
CVE-2022-35916 Cross chain utilities for Arbitrum L2 see EOA calls as cross chain calls
OpenZeppelin Contracts is a library for secure smart contract development. Contracts using the cross chain utilities for Arbitrum L2, CrossChainEnabledArbitrumL2 or LibArbitrumL2, will classify direct interactions of externally owned accounts EOAs as cross chain calls, even though they are not...
CVE-2022-35916 Cross chain utilities for Arbitrum L2 see EOA calls as cross chain calls
OpenZeppelin Contracts is a library for secure smart contract development. Contracts using the cross chain utilities for Arbitrum L2, CrossChainEnabledArbitrumL2 or LibArbitrumL2, will classify direct interactions of externally owned accounts EOAs as cross chain calls, even though they are not...