exploitDog

CVE-2022-24916

Опубликовано: 10 фев. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Optimism before @eth-optimism/l2geth@0.5.11 allows economic griefing because a balance is duplicated upon contract self-destruction.

Ссылки

https://github.com/ethereum-optimism/optimism/compare/%40eth-optimism%2Fl2geth%400.5.10...%40eth-optimism%2Fl2geth%400.5.11
Patch
Third Party Advisory
https://github.com/ethereum-optimism/optimism/pull/2146
Patch
Third Party Advisory
https://news.ycombinator.com/item?id=30289240
Third Party Advisory
https://optimismpbc.medium.com/disclosure-fixing-a-critical-bug-in-optimisms-geth-fork-a836ebdf7c94
Third Party Advisory
https://www.saurik.com/optimism.html
Exploit
Third Party Advisory
https://github.com/ethereum-optimism/optimism/compare/%40eth-optimism%2Fl2geth%400.5.10...%40eth-optimism%2Fl2geth%400.5.11
Patch
Third Party Advisory
https://github.com/ethereum-optimism/optimism/pull/2146
Patch
Third Party Advisory
https://news.ycombinator.com/item?id=30289240
Third Party Advisory
https://optimismpbc.medium.com/disclosure-fixing-a-critical-bug-in-optimisms-geth-fork-a836ebdf7c94
Third Party Advisory
https://www.saurik.com/optimism.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:optimism:eth-optimism\/l2geth:*:*:*:*:*:*:*:*

Версия до 0.5.11 (исключая)

EPSS

Процентиль: 61%

0.00419

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-rv44-84c7-gvxx

github

почти 4 года назад

Optimism before @eth-optimism/l2geth@0.5.11 allows economic griefing because a balance is duplicated upon contract self-destruction.

EPSS

Процентиль: 61%

0.00419

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo