VYPR
Moderate severityNVD Advisory· Published Aug 22, 2022· Updated Aug 3, 2024

ReDoS in eth-account encode_structured_data function

CVE-2022-1930

Description

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the eth-account PyPI package, when an attacker is able to supply arbitrary input to the encode_structured_data method

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
eth-accountPyPI
< 0.5.90.5.9

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.