Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm News
Packet Storm Newsadded 2025/05/19 12:0 a.m.2 views

Multiple Proposer Transaction Fee Mechanism Design: Robust Incentives against Censorship and Bribery

Censorship resistance is one of the core value proposition of blockchains. A recurring design pattern aimed at providing censorship resistance is enabling multiple proposers to contribute inputs into block construction. Notably, Fork-Choice Enforced Inclusion Lists FOCIL is proposed to be include...

6.9AI score
Exploits0
OSV
OSVadded 2021/08/27 12:15 a.m.17 views

CVE-2021-39168

OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an actor with the executor role to escalate privileges. Further details about the vulnerability will be disclosed at a later date. As a workaround revoke the executor role...

9.8CVSS9.5AI score
Exploits0References3
OSV
OSVadded 2021/08/27 12:15 a.m.8 views

CVE-2021-39167

OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an actor with the executor role to escalate privileges. Further details about the vulnerability will be disclosed at a later date. As a workaround revoke the executor role...

9.8CVSS9.5AI score
Exploits0References3
Cvelist
Cvelistadded 2021/08/26 11:35 p.m.11 views

CVE-2021-39167 TimelockController vulnerability in OpenZeppelin Contracts

OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an actor with the executor role to escalate privileges. Further details about the vulnerability will be disclosed at a later date. As a workaround revoke the executor role...

10CVSS9.7AI score0.00443EPSS
Exploits0References3
OSV
OSVadded 2020/07/02 5:15 p.m.8 views

CVE-2020-15091

TenderMint from version 0.33.0 and before version 0.33.6 allows block proposers to include signatures for the wrong block. This may happen naturally if you start a network, have it run for some time and restart it without changing chainID. A malicious block proposer even with a minimal amount of...

6.5CVSS6.5AI score
Exploits0References3
Cvelist
Cvelistadded 2020/07/02 5:5 p.m.12 views

CVE-2020-15091 Denial of Service in TenderMint

TenderMint from version 0.33.0 and before version 0.33.6 allows block proposers to include signatures for the wrong block. This may happen naturally if you start a network, have it run for some time and restart it without changing chainID. A malicious block proposer even with a minimal amount of...

6.5CVSS6.2AI score0.00154EPSS
Exploits1References3
CVE
CVEadded 2020/07/02 5:5 p.m.44 views

CVE-2020-15091

CVE-2020-15091 affects Tendermint up to v0.33.6: versions 0.33.0 through 0.33.5 allow a block proposer to include signatures for the wrong block, potentially halting the network. The root cause is signatures not guaranteed to correspond to the committed block, enabling a DoS condition where commi...

6.5CVSS6.1AI score0.00154EPSS
Exploits1References3Affected Software1
Schneier on Security
Schneier on Securityadded 2018/04/10 11:11 a.m.22 views

DARPA Funding in AI-Assisted Cybersecurity

DARPA is launching a program aimed at vulnerability discovery via human-assisted AI. The new DARPA program is called CHESS Computers and Humans Exploring Software Security, and they're holding a proposers day in a week and a half. This is the kind of thing that can dramatically change the...

2AI score
Exploits0
Rows per page
Query Builder