4 matches found
@uniswap/universal-router-sdk (>=1.1.0 <=1.1.1) potentially affected by CVE-2022-48216 via @uniswap/universal-router (=1.0.1)
@uniswap/universal-router NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @uniswap/universal-router and may be impacted: - @uniswap/universal-router-sdk =1.1.0, =1.1.1 Source cves: CVE-2022-48216 Source advisory: OSV:GHSA-7M37-CX35-Q...
CVE-2022-48216
creationtimestamp| type| source ---|---|--- 2023-01-04 18:18:09+00:00| seen| https://t.me/cibsecurity/55890...
CVE-2022-48216
The CVE-2022-48216 issue affects Uniswap Universal Router versions prior to 1.1.0. A reentrancy mishandling in the router could allow theft of funds. Impact is described as high (CVE metrics indicate network exposure with high confidentiality, integrity, and availability impact). Remediation per ...
CVE-2022-48216
Uniswap Universal Router before 1.1.0 mishandles reentrancy. This would have allowed theft of funds...