Lucene search
K

96 matches found

Snyk
Snyk
added 2025/10/21 6:4 p.m.2 views

Use of a Cryptographic Primitive with a Risky Implementation

Overview Affected versions of this package are vulnerable to Use of a Cryptographic Primitive with a Risky Implementation in the handling of precompiles in the BalanceHandler that can cause prevEventsLen to be overwritten. An attacker can compromise the integrity or confidentiality of the system ...

9.3CVSS6.7AI score
Exploits0References3
Snyk
Snyk
added 2025/10/21 6:4 p.m.3 views

Use of a Cryptographic Primitive with a Risky Implementation

Overview Affected versions of this package are vulnerable to Use of a Cryptographic Primitive with a Risky Implementation in the handling of precompiles in the BalanceHandler that can cause prevEventsLen to be overwritten. An attacker can compromise the integrity or confidentiality of the system ...

9.3CVSS6.7AI score
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0562

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01331EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7106

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00538EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.25 views

EUVD-2023-0264

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00487EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-14942

Malicious code in bioql PyPI...

6.6AI score
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-0996

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00873EPSS
Exploits0References6
OSV
OSV
added 2025/08/14 6:52 p.m.5 views

MAL-2025-22172 Malicious code in handlebars-inline-precompile (npm)

The package handlebars-inline-precompile was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.5 views

Malicious code in handlebars-inline-precompile (npm)

The package handlebars-inline-precompile was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/07/28 8:34 p.m.5 views

CVE-2025-54429 Polkadot Frontier's constructing smart contract can bypass precompile address bounding

Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...

6.9CVSS6.7AI score0.00457EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/28 8:34 p.m.4 views

CVE-2025-54429 Polkadot Frontier's constructing smart contract can bypass precompile address bounding

Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...

6.9CVSS6.4AI score0.00457EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/08 2:38 a.m.4 views

Malicious code in htmlbars-inline-precompile (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c4a212f0a71820f5e5ac4def1449d454a87b95082eae0de676cc3e27006831a Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/07/08 2:38 a.m.3 views

MAL-2025-5700 Malicious code in htmlbars-inline-precompile (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c4a212f0a71820f5e5ac4def1449d454a87b95082eae0de676cc3e27006831a Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.3 views

CVE-2023-28431

Frontier is an Ethereum compatibility layer for Substrate. Frontier's modexp precompile uses num-bigint crate under the hood. In the implementation prior to pull request 1017, the cases for modulus being even and modulus being odd are treated separately. Odd modulus uses the fast Montgomery...

7.5CVSS6.7AI score0.00873EPSS
Exploits0References1
OSV
OSV
added 2025/05/15 8:0 p.m.5 views

GO-2025-3684 Cosmos EVM Allows Partial Precompile State Writes in github.com/cosmos/evm

Cosmos EVM Allows Partial Precompile State Writes in github.com/cosmos/evm...

7.1AI score
Exploits0References3
Snyk
Snyk
added 2025/05/14 5:35 p.m.1 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Snyk
Snyk
added 2025/05/14 5:35 p.m.2 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Snyk
Snyk
added 2025/05/14 5:35 p.m.3 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Snyk
Snyk
added 2025/05/14 5:35 p.m.1 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Snyk
Snyk
added 2025/05/14 5:35 p.m.2 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Rows per page
Query Builder