Lucene search
K

4 matches found

Snyk
Snyk
added 2026/01/05 7:57 p.m.0 views

Integer Overflow or Wraparound

Overview @openzeppelin/confidential-contracts is a Smart Contract library for use with confidential coprocessors Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the wrap and onTransferReceived functions used by the ERC7984 contract. An attacker can cause user...

8.2CVSS7AI score
Exploits0References2
OSV
OSV
added 2026/01/05 7:57 p.m.1 views

GHSA-HQF9-8XV5-X8XW ERC7984ERC20Wrapper: once a wrapper is filled, subsequent wrap requests do not revert and result in loss of funds.

Impact The ERC7984 contract tracks total supply using a confidential euint64 value. If a call to the internal mint function would result in the total supply overflowing, the call fails silently. The wrap and onTransferReceived functions in ERC7984ERC20Wrapper assume that mint won't fail silently...

8.7CVSS6.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/01/05 7:57 p.m.8 views

ERC7984ERC20Wrapper: once a wrapper is filled, subsequent wrap requests do not revert and result in loss of funds.

Impact The ERC7984 contract tracks total supply using a confidential euint64 value. If a call to the internal mint function would result in the total supply overflowing, the call fails silently. The wrap and onTransferReceived functions in ERC7984ERC20Wrapper assume that mint won't fail silently...

6.9AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.3 views

PT-2026-3200

Impact The ERC7984 contract tracks total supply using a confidential euint64 value. If a call to the internal mint function would result in the total supply overflowing, the call fails silently. The wrap and onTransferReceived functions in ERC7984ERC20Wrapper assume that mint won't fail silently...

8.7CVSS6.8AI score
Exploits0References3
Rows per page
Query Builder