CVE-2024-58263
LOWcosmwasm-std 1.3.0-1.4.3 - Integer Overflow in Contract Calculations
Title source: llmDescription
The cosmwasm-std crate before 2.0.2 for Rust allows integer overflows that cause incorrect contract calculations.
References (3)
Core 3
Core References
Exploit, Patch, Third Party Advisory
https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2024-002.md
Exploit, Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2024-0338.html
Scores
CVSS v3
3.7
EPSS
0.0040
EPSS Percentile
31.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-190
Status
published
Products (2)
cosmwasm/cosmwasm-std
1.3.0 - 1.4.4
crates.io/cosmwasm-std
1.3.0 - 1.4.4crates.io
Published
Jul 27, 2025
Tracked Since
Feb 18, 2026