9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
9.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.8%
Evmos transaction execution not accounting for all state transition after interaction with precompiles in github.com/evmos/evmos
CPE | Name | Operator | Version |
---|---|---|---|
github.com/evmos/evmos/v17 | lt | 17.0.0 |
github.com/evmos/evmos/blob/b196a522ba4951890b40992e9f97aa610f8b5f9c/x/evm/statedb/statedb.go#L33-L55
github.com/evmos/evmos/blob/b196a522ba4951890b40992e9f97aa610f8b5f9c/x/evm/statedb/statedb.go#L460-L465
github.com/evmos/evmos/blob/b196a522ba4951890b40992e9f97aa610f8b5f9c/x/evm/statedb/state_object.go#L53-L68
github.com/evmos/evmos/commit/08982b5ee726b97bc50eaf58d1914829648b6a5f
github.com/evmos/evmos/security/advisories/GHSA-3fp5-2xwh-fxm6
nvd.nist.gov/vuln/detail/CVE-2024-32644
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
9.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.8%