VYPR

Ethermint

by Cosmos Network

CVEs (2)

  • CVE-2021-25837HigFeb 8, 2021
    risk 0.49cvss 7.5epss 0.02

    Cosmos Network Ethermint <= v0.4.0 is affected by cache lifecycle inconsistency in the EVM module. Due to the inconsistency between the Storage caching cycle and the Tx processing cycle, Storage changes caused by a failed transaction are improperly reserved in memory. Although…

  • CVE-2021-25836HigFeb 8, 2021
    risk 0.49cvss 7.5epss 0.01

    Cosmos Network Ethermint <= v0.4.0 is affected by cache lifecycle inconsistency in the EVM module. The bytecode set in a FAILED transaction wrongfully remains in memory(stateObject.code) and is further written to persistent store at the Endblock stage, which may be utilized to…