VYPR

crates.io package

openvm

pkg:cargo/openvm

Vulnerabilities (1)

  • CVE-2025-46723HigMay 2, 2025
    affected >= 1.0.0, < 1.1.0fixed 1.1.0

    OpenVM is a performant and modular zkVM framework built for customization and extensibility. In version 1.0.0, OpenVM is vulnerable to overflow through byte decomposition of pc in AUIPC chip. A typo results in the highest limb of pc being range checked to 8-bits instead of 6-bits