Lucene search
GoogleOSV:CVE-2024-37159HistoryJun 17, 2024 - 2:15 p.m.
CVE-2024-37159
2024-06-1714:15:10
Google
osv.dev
2
evmos
ethereum virtual machine
cosmos network
vulnerability
validator
tokens
deposit
self-bond
fixed
software
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
AI Score
3.4
Confidence
High
Evmos is the Ethereum Virtual Machine (EVM) Hub on the Cosmos Network. This vulnerability allowed a user to create a validator using vested tokens to deposit the self-bond. This vulnerability is fixed in 18.0.0.
Related
osv
osv
CVE-2024-37158
2024-06-17 14:15:10
CVE-2024-32873
2024-06-06 19:15:56
Evmos is missing create validator check in github.com/evmos/evmos
2024-06-28 15:28:30
cvelist
cvelist
CVE-2024-32873 evmos allows transferring unvested tokens after delegations
2024-06-06 18:13:54
CVE-2024-37158 Evmos is missing precompile checks
2024-06-17 14:03:22
CVE-2024-37159 Evmos is missing create validator check
2024-06-17 14:03:29
veracode
veracode
Incorrect Calculation
2024-06-11 06:07:58
Insufficient Control Flow Management
2024-06-18 08:32:56
Improper Authorization
2024-06-18 08:26:20
cve
cve
vulnrichment
vulnrichment
CVE-2024-37158 Evmos is missing precompile checks
2024-06-17 14:03:22
CVE-2024-32873 evmos allows transferring unvested tokens after delegations
2024-06-06 18:13:54
CVE-2024-37159 Evmos is missing create validator check
2024-06-17 14:03:29
nvd
nvd
github
github
evmos allows transferring unvested tokens after delegations
2024-06-06 18:21:05
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
AI Score
3.4
Confidence
High
Related for OSV:CVE-2024-37159