PT-2022-23021 · Openzeppelin · Openzeppelin Contracts

Name of the Vulnerable Software and Affected Versions: OpenZeppelin Contracts versions prior to 4.7.2 Description: The target contract of an EIP-165 supportsInterface query can cause unbounded gas consumption by returning a lot of data, while it is generally assumed that this operation has a...

OpenZeppelin 资源管理错误漏洞

OpenZeppelin is a software application. A standard for secure blockchain applications. A resource management error vulnerability exists in versions prior to OpenZeppelin Contracts v4.7.2, which stems from the fact that this is a library for secure smart contract development, and the target contra...