5 matches found
EUVD-2025-201290
Taiko Alethia is an Ethereum-equivalent, permissionless, based rollup designed to scale Ethereum without compromising its fundamental properties. In 2.3.1 and earlier, TaikoInbox.verifyBatches packages/protocol/contracts/layer1/based/TaikoInbox.sol:627-678 advanced the local tid to whatever...
CVE-2025-66559
CVE-2025-66559 affects Taiko Alethia (2.3.1 and earlier) due to a bug in TaikoInbox._verifyBatches: the function advances the local tid to a transition that matches the current blockHash before batch verification completes. If the verification loop breaks (e.g., cooldown window not passed or tran...
Taiko Alethia 输入验证错误漏洞
Taiko Alethia is a collection of software open-sourced by Taiko Labs for implementing the Ethernet-based ZK-EVM Rollup protocol for the Taiko Layer 2 network. An input validation error vulnerability exists in Taiko Alethia 2.3.1 and earlier versions, which stems from the TaikoInbox.verifyBatches...
Taiko Alethia 跨站脚本漏洞
Taiko Alethia is an open source Taiko Labs collection of software for implementing the Ethernet-based ZK-EVM Rollup protocol for the Taiko Layer 2 network. A cross-site scripting vulnerability exists in Taiko Alethia version 3.2.41.10.26, which stems from the presence of cross-site script injecti...
PT-2025-49170
Name of the Vulnerable Software and Affected Versions Taiko Alethia versions prior to 2.3.1 Description Taiko Alethia, a permissionless rollup designed to scale Ethereum, contains an issue in the TaikoInbox. verifyBatches function packages/protocol/contracts/layer1/based/TaikoInbox.sol:627-678. T...