Lucene search
Veracode Vulnerability DatabaseVERACODE:46627HistoryApr 26, 2024 - 5:06 a.m.
Improper Input Validation
2024-04-2605:06:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
improper input validation
memory handling
storage arguments
incorrect values
logging vulnerability
vyper software
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
vyper is vulnerable to Improper Input Validation. The vulnerability is caused by improper handling of memory or storage arguments in the raw_log builtin, which results in incorrect values being logged when these arguments are used as topics.
Related
cve
cve
CVE-2024-32645
2024-04-25 18:15:08
nvd
nvd
CVE-2024-32645
2024-04-25 18:15:08
cvelist
cvelist
CVE-2024-32645 vyper performs incorrect topic logging in raw_log
2024-04-25 17:18:27
osv
osv
vyper performs incorrect topic logging in raw_log
2024-04-25 19:53:10
github
github
vyper performs incorrect topic logging in raw_log
2024-04-25 19:53:10
vulnrichment
vulnrichment
CVE-2024-32645 vyper performs incorrect topic logging in raw_log
2024-04-25 17:18:27
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
Related for VERACODE:46627