0.001 Low
EPSS
Percentile
32.0%
openzeppelin/contracts is vulnerable to privilege escalation. The vulnerability exists due to the lack of sanitization in the initializer function which allowed an actor with executor role to escalate privileges.
initializer
github.com/Amxx/openzeppelin-contracts/commit/089f3d5b28b96e6593908ef727274631452f31f0
github.com/OpenZeppelin/openzeppelin-contracts/pull/3006
github.com/OpenZeppelin/openzeppelin-contracts/security/advisories/GHSA-9c22-pwxw-p6hx