Lucene search
K

4 matches found

PyPA
PyPA
added 2024/02/01 5:15 p.m.7 views

PYSEC-2024-149

Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In versions 0.3.10 and earlier, the bounds check for slices does not account for the ability for start + length to overflow when the values aren't literals. If a slice function uses a non-literal argument for the start ...

9.8CVSS7.1AI score0.00902EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/02/01 4:37 p.m.52 views

CVE-2024-24561 Vyper bounds check on built-in `slice()` function can be overflowed

Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In versions 0.3.10 and earlier, the bounds check for slices does not account for the ability for start + length to overflow when the values aren't literals. If a slice function uses a non-literal argument for the start ...

9.8CVSS9.8AI score0.00902EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.7 views

PT-2024-20452 · Vyper · Vyper

Name of the Vulnerable Software and Affected Versions: Vyper versions 0.3.10 and earlier Description: The bounds check for slices in Vyper does not account for the ability for start + length to overflow when the values aren't literals. This issue can be used to do out-of-bounds OOB access to...

9.8CVSS9.5AI score0.00902EPSS
Exploits1References14
OSV
OSV
added 2022/01/20 10:15 p.m.1 views

UBUNTU-CVE-2021-46343

There is an Assertion 'contextp-token.type == LEXERLITERAL' failed at /jerry-core/parser/js/js-parser-expr.c in JerryScript 3.0.0...

5.5CVSS6AI score0.00621EPSS
Exploits1References3
Rows per page
Query Builder