CVE & Exploit Intelligence Database

CVE-2024-32873 3.5 LOW 1 Writeup EPSS 0.00

Evmos is the Ethereum Virtual Machine (EVM) Hub on the Cosmos Network. The spendable balance is not updated properly when delegating vested tokens. The issue allows a clawback vesting account to anticipate the release of unvested tokens. This vulnerability is fixed in 18.0.0.

CWE-682 Jun 06, 2024

CVE-2024-36736 9.8 CRITICAL EPSS 0.00

An issue in the oneflow.permute component of OneFlow-Inc. Oneflow v0.9.1 causes an incorrect calculation when the same dimension operation is performed.

CWE-682 Jun 06, 2024

CVE-2024-34704 5.9 MEDIUM EPSS 0.00

era-compiler-solidity is the ZKsync compiler for Solidity. The problem occurred during instruction selection in the `DAGCombine` phase while visiting the XOR operation. The issue arises when attempting to fold the expression `!(x cc y)` into `(x !cc y)`. To perform this transformation, the second operand of XOR should be a constant representing the true value. However, it was incorrectly assumed that -1 represents the true value, when in fact, 1 is the correct representation, so this transformation for this case should be skipped. This vulnerability is fixed in 1.4.1.

CWE-682 May 14, 2024

CVE-2023-43490 5.3 MEDIUM EPSS 0.00

Incorrect calculation in microcode keying mechanism for some Intel(R) Xeon(R) D Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.

CWE-682 Mar 14, 2024

CVE-2023-31347 4.9 MEDIUM EPSS 0.00

Due to a code bug in Secure_TSC, SEV firmware may allow an attacker with high privileges to cause a guest to observe an incorrect TSC when Secure TSC is enabled potentially resulting in a loss of guest integrity.  

CWE-682 Feb 13, 2024

CVE-2023-46247 7.5 HIGH 1 Writeup EPSS 0.00

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Contracts containing large arrays might underallocate the number of slots they need by 1. Prior to v0.3.8, the calculation to determine how many slots a storage variable needed used `math.ceil(type_.size_in_bytes / 32)`. The intermediate floating point step can produce a rounding error if there are enough bits set in the IEEE-754 mantissa. Roughly speaking, if `type_.size_in_bytes` is large (> 2**46), and slightly less than a power of 2, the calculation can overestimate how many slots are needed by 1. If `type_.size_in_bytes` is slightly more than a power of 2, the calculation can underestimate how many slots are needed by 1. This issue is patched in version 0.3.8.

CWE-682 Dec 13, 2023

CVE-2023-35642 6.5 MEDIUM EPSS 0.00

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CWE-682 Dec 12, 2023

CVE-2023-35641 8.8 HIGH EPSS 0.05

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

CWE-682 Dec 12, 2023

CVE-2023-42460 5.3 MEDIUM EPSS 0.00

Vyper is a Pythonic Smart Contract Language for the EVM. The `_abi_decode()` function does not validate input when it is nested in an expression. Uses of `_abi_decode()` can be constructed which allow for bounds checking to be bypassed resulting in incorrect results. This issue has not yet been fixed, but a fix is expected in release `0.3.10`. Users are advised to reference pull request #3626.

CWE-682 Sep 27, 2023

CVE-2023-2163 10.0 CRITICAL EXPLOITED 1 PoC Analysis EPSS 0.00

Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.

CWE-682 Sep 20, 2023

CVE-2023-36980 5.3 MEDIUM EPSS 0.00

An issue in Ethereum Blockchain v0.1.1+commit.6ff4cd6 cause the balance to be zeroed out when the value of betsize+casino.balance exceeds the threshold.

CWE-682 Sep 11, 2023

CVE-2023-2423 8.6 HIGH EPSS 0.00

A vulnerability was discovered in the Rockwell Automation Armor PowerFlex device when the product sends communications to the local event log. Threat actors could exploit this vulnerability by sending an influx of network commands, causing the product to generate an influx of event log traffic at a high rate. If exploited, the product would stop normal operations and self-reset creating a denial-of-service condition. The error code would need to be cleared prior to resuming normal operations.

CWE-682 Aug 08, 2023

CVE-2023-35848 7.5 HIGH EPSS 0.00

VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 lacks certain size calculations before attempting to set a value of an mss structure member.

CWE-682 Jun 19, 2023

CVE-2023-3161 5.5 MEDIUM 1 Writeup EPSS 0.00

A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service.

CWE-1335 Jun 12, 2023

CVE-2023-28431 7.5 HIGH 2 Writeups EPSS 0.00

Frontier is an Ethereum compatibility layer for Substrate. Frontier's `modexp` precompile uses `num-bigint` crate under the hood. In the implementation prior to pull request 1017, the cases for modulus being even and modulus being odd are treated separately. Odd modulus uses the fast Montgomery multiplication, and even modulus uses the slow plain power algorithm. This gas cost discrepancy was not accounted for in the `modexp` precompile, leading to possible denial of service attacks. No fixes for `num-bigint` are currently available, and thus this issue is fixed in the short term by raising the gas costs for even modulus, and in the long term fixing it in `num-bigint` or switching to another modexp implementation. The short-term fix for Frontier is deployed at pull request 1017. There are no known workarounds aside from applying the fix.

CWE-682 Mar 22, 2023

CVE-2023-1296 2.7 LOW EPSS 0.00

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workload’s variables. Fixed in 1.4.6 and 1.5.1.

CWE-682 Mar 14, 2023

CVE-2023-24533 7.5 HIGH 1 Writeup EPSS 0.00

Multiplication of certain unreduced P-256 scalars produce incorrect results. There are no protocols known at this time that can be attacked due to this.

CWE-682 Mar 08, 2023

CVE-2023-24532 5.3 MEDIUM EPSS 0.00

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.

CWE-682 Mar 08, 2023

CVE-2023-26488 6.5 MEDIUM 1 Writeup EPSS 0.00

OpenZeppelin Contracts is a library for secure smart contract development. The ERC721Consecutive contract designed for minting NFTs in batches does not update balances when a batch has size 1 and consists of a single token. Subsequent transfers from the receiver of that token may overflow the balance as reported by `balanceOf`. The issue exclusively presents with batches of size 1. The issue has been patched in 4.8.2.

CWE-682 Mar 03, 2023

CVE-2022-33972 6.1 MEDIUM EPSS 0.00

Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable information disclosure via local access.

CWE-682 Feb 16, 2023