VYPR

crates.io package

tendermint-light-client-js

pkg:cargo/tendermint-light-client-js

Vulnerabilities (1)

  • CVE-2022-23507Dec 15, 2022
    affected < 0.28.0fixed 0.28.0

    Tendermint is a high-performance blockchain consensus engine for Byzantine fault tolerant applications. Versions prior to 0.28.0 contain a potential attack via Improper Verification of Cryptographic Signature, affecting anyone using the tendermint-light-client and related package