26 matches found
ROS-20260317-73-0026
A vulnerability in the mptcpdofallback function of the mptcp component of the mptcp component of the Linux operating system kernel involves an infinite loop. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PartyGovernance contract cannot accept Eth
Lines of code Vulnerability details Impact The PartyGovernance contract does not have payable in it fallback back function which is the main context of allowing a contract to accept Ether or else it will revert or lost forever if receive. Proof of Concept Lack of payable fallback function is...
Claim reward can be inaccessible if msg.sender is a smart contract with no fallback/receive function
Lines of code Vulnerability details Impact When calling claim on LendingLedger, the claim reward can be inaccessible if msg.sender is a smart contract with no fallback/receive function. Indeed, msg.sender.callvalue: cantoToSend"" would fail and the claim would revert, not allowing the user to...
Attackers might be able to avoid calling reference modules when creating publications
Lines of code Vulnerability details Bug Description When comment, mirror or quote is called on a publication with a reference module, the reference module will be called. For example, when a user mirrors another publication with a reference module, the processMirror function of that reference...
Potential for Permanent Lock of Funds in NounsDAOExecutorV2 Contract
Lines of code Vulnerability details Impact The NounsDAOExecutorV2 contract has a potential vulnerability where Ether or ERC20 tokens could become permanently locked in the contract. This could occur if funds are sent to the contract by someone other than the admin, or if the admin loses access to...
An attacker can burn shares of other users by calling executeFlashloan()
Lines of code Vulnerability details The executeFlashloan in PeUSDMainnetStableVision.sol allows users to execute flash loans but the problem is that the receiver doesnt have to be the msg.sender so an attacker can do 2 things: 1. Execute other users flash loans 2. If a user is a smart contract th...
Reentrancy guard in rageQuit() can be bypassed
Lines of code Vulnerability details Reentrancy guard in rageQuit can be bypassed The reentrancy guard present in the rageQuit function can be bypassed by host accounts, leading to reentrancy attack vectors and loss of funds. Impact The new rageQuit function can be used by party members to exit...
PT-2023-1852 · Libde265 +4 · Libde265 +4
Name of the Vulnerable Software and Affected Versions: libde265 version 1.0.10 Description: The issue is related to a NULL pointer dereference in the put weighted pred 8 fallback function at fallback-motion.cc. This allows attackers to cause a Denial of Service DoS via a crafted input file...
PT-2022-7570 · Libde265 +1 · Libde265 +1
Name of the Vulnerable Software and Affected Versions: Libde265 version 1.0.9 Description: The issue is related to a buffer overflow in the put qpel fallback function of the Libde265 video codec implementation. This can allow an attacker to access confidential data, compromise data integrity, and...
UBUNTU-CVE-2022-43244
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via putqpelfallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted video file...
AxelarDepositService: When wrappedToken is not weth, sendNative may cause users to lose ether.
Lines of code Vulnerability details Impact In the sendNative function of the AxelarDepositService contract, the wrappedToken address is treated as weth-like and the wrappedToken's deposit function is called. If the wrappedToken address is TokenType.External token and is not weth-like and the...
Call() should be used instead of transfer() on an address payable
Lines of code Vulnerability details Impact The use of the deprecated transfer function for an address will inevitably make the transaction fail when : 1. The withdrawer smart contract does not implement a payable fallback function. 2. The withdrawer smart contract implements a payable fallback...
Contract TresureDelegate.sol could be destructed
Lines of code Vulnerability details Impact The contract simply could be destructed by anyone. Proof of Concept The question is how?! Imagine, that the recipient account has a fallback function with a selfdestruct in it. ./attack.sol contract attack fallback external payable...
Upgraded Q -> M from 205 [1655579891083]
Judge has assessed an item in Issue 205 as Medium risk. The relevant finding follows: transfer and send methods are used inside the codebase. Since these methods use 2300 gas stipend which is not adjustable,it may likely to get broken when calling a contract's fallback function if any contract...
IsWrappedFcash check is a gas bomb
Lines of code Vulnerability details Impact In the isWrappedFCash check, the notionalTradeModule check whether the component is a wrappedCash with the following logic. try IWrappedfCashfCashPosition.getDecodedID returnsuint16 currencyId, uint40 maturity try...
Dos in callFacet.call()
Handle JMukesh Vulnerability details Impact In function call address memory targets, bytes memory calldata, uint256 memory values if any one of the address is contract and implemented revert in its fallback , then all other transaction will get failed due this one transation Proof of Concept Tool...
ALPINE-CVE-2020-21600
libde265 v1.0.4 contains a heap buffer overflow in the putweightedpredavg16fallback function, which can be exploited via a crafted a file...
UBUNTU-CVE-2020-21600
libde265 v1.0.4 contains a heap buffer overflow in the putweightedpredavg16fallback function, which can be exploited via a crafted a file...
Lucky9io has a logic flaw vulnerability
Lucky9io is an ethereum-based virtual gambling game.A security vulnerability exists in Lucky9io's implementation of a simple lotto smart contract, which stems from the use of a fallback function to generate random values using the publicly readable variable entrynumber. An attacker could exploit...
PT-2019-6203 · Struktur Ag +4 · Libde265 +4
Name of the Vulnerable Software and Affected Versions: libde265 version 1.0.4 Description: The issue is related to a heap buffer overflow fault in the put epel 16 fallback function. This can be exploited via a crafted file, potentially allowing a remote attacker to cause a denial of service...