Go modules package
github.com/cosmos/ethermint
pkg:golang/github.com/cosmos/ethermint
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-25835 | — | < 0.4.1 | 0.4.1 | Feb 8, 2021 | Cosmos Network Ethermint <= v0.4.0 is affected by a cross-chain transaction replay vulnerability in the EVM module. Since ethermint uses the same chainIDEpoch and signature schemes with ethereum for compatibility, a verified signature in ethereum is still valid in ethermint with | ||
| CVE-2021-25834 | — | < 0.4.1 | 0.4.1 | Feb 8, 2021 | Cosmos Network Ethermint <= v0.4.0 is affected by a transaction replay vulnerability in the EVM module. If the victim sends a very large nonce transaction, the attacker can replay the transaction through the application. |
- CVE-2021-25835Feb 8, 2021affected < 0.4.1fixed 0.4.1
Cosmos Network Ethermint <= v0.4.0 is affected by a cross-chain transaction replay vulnerability in the EVM module. Since ethermint uses the same chainIDEpoch and signature schemes with ethereum for compatibility, a verified signature in ethereum is still valid in ethermint with
- CVE-2021-25834Feb 8, 2021affected < 0.4.1fixed 0.4.1
Cosmos Network Ethermint <= v0.4.0 is affected by a transaction replay vulnerability in the EVM module. If the victim sends a very large nonce transaction, the attacker can replay the transaction through the application.