Vulnerability Report: GO-2022-0760
- CVE-2022-35936, GHSA-f92v-grc2-w2fg
- Affects: github.com/crypto-org-chain/cronos, github.com/evmos/ethermint, and 8 more
- Published: Aug 21, 2024
- Unreviewed
Ethermint vulnerable to DoS through unintended Contract Selfdestruct in github.com/crypto-org-chain/cronos
For detailed information about this vulnerability, visit https://github.com/evmos/ethermint/security/advisories/GHSA-f92v-grc2-w2fg or https://nvd.nist.gov/vuln/detail/CVE-2022-35936.
Affected Modules
-
PathGo Versions
-
before v0.7.1-rc2
-
before v0.18.0
-
all versions, no known fixed
-
all versions, no known fixed
-
all versions, no known fixed
-
all versions, no known fixed
-
all versions, no known fixed
-
all versions, no known fixed
-
before v7.0.0
-
before v0.18.0
Aliases
References
- https://github.com/evmos/ethermint/security/advisories/GHSA-f92v-grc2-w2fg
- https://nvd.nist.gov/vuln/detail/CVE-2022-35936
- https://github.com/evmos/ethermint/commit/144741832007a26dbe950512acbda4ed95b2a451
- https://github.com/evmos/ethermint/blob/c9d42d667b753147977a725e98ed116c933c76cb/x/evm/keeper/statedb.go#L199-L203
- https://vuln.go.dev/ID/GO-2022-0760.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.