CVE-2021-25834 · CVEKit

cve.orgen

220 chars

Cosmos Network Ethermint <= v0.4.0 is affected by a transaction replay vulnerability in the EVM module. If the victim sends a very large nonce transaction, the attacker can replay the transaction through the application.

NVDen

220 chars

Cosmos Network Ethermint <= v0.4.0 is affected by a transaction replay vulnerability in the EVM module. If the victim sends a very large nonce transaction, the attacker can replay the transaction through the application.

OSV.deven

70 chars

Authentication bypass by capture-replay in github.com/cosmos/ethermint

GHSAen

302 chars

Cosmos Network Ethermint <= v0.4.0 is affected by a transaction replay vulnerability in the EVM module. If the victim sends a very large nonce transaction, the attacker can replay the transaction through the application. ### Specific Go Packages Affected github.com/cosmos/ethermint/rpc/namespaces/eth

NVDes

286 chars

Cosmos Network Ethermint versiones anteriores e incluyendo a v0.4.0 está afectado por una vulnerabilidad de reproducción de transacciones en el módulo EVM. Si la víctima envía una transacción nonce muy grande, el atacante puede reproducir la transacción por medio de la aplicación

CVSS metrics across sources

3

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N