VYPR
Vendor

Cosmos Network

Products
3
CVEs
4
Across products
4
Status
Private

Products

3

Recent CVEs

4
  • CVE-2021-25837HigFeb 8, 2021
    risk 0.49cvss 7.5epss 0.02

    Cosmos Network Ethermint <= v0.4.0 is affected by cache lifecycle inconsistency in the EVM module. Due to the inconsistency between the Storage caching cycle and the Tx processing cycle, Storage changes caused by a failed transaction are improperly reserved in memory. Although…

  • CVE-2021-25836HigFeb 8, 2021
    risk 0.49cvss 7.5epss 0.01

    Cosmos Network Ethermint <= v0.4.0 is affected by cache lifecycle inconsistency in the EVM module. The bytecode set in a FAILED transaction wrongfully remains in memory(stateObject.code) and is further written to persistent store at the Endblock stage, which may be utilized to…

  • CVE-2025-23214MedJan 20, 2025
    risk 0.38cvss epss 0.01

    Cosmos provides users the ability self-host a home server by acting as a secure gateway to your application, as well as a server manager. By monitoring the error code returned in the login, it is possible to figure out whether a user exist or not in the database. Patched in…

  • CVE-2021-41135MedOct 20, 2021
    risk 0.35cvss 6.5epss 0.02

    The Cosmos-SDK is a framework for building blockchain applications in Golang. Affected versions of the SDK were vulnerable to a consensus halt due to non-deterministic behaviour in a ValidateBasic method in the x/authz module. The MsgGrant of the x/authz module contains a Grant…

VYPR — Vulnerability Intelligence