exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2025-25500

11 месяцев назад

An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attackers to deploy a contract without capability enforcement, and execute unauthorized actions on the blockchain.

CVSS3: 7.5

EPSS: Низкий

GHSA-cg8r-jwg7-r2x4

11 месяцев назад

CosmWasm Allows Bypass of Capability Restrictions in Blockchains

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2025-25500 An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attackers to deploy a contract without capability enforcement, and execute unauthorized actions on the blockchain.	CVSS3: 7.5	1% Низкий	11 месяцев назад
	GHSA-cg8r-jwg7-r2x4 CosmWasm Allows Bypass of Capability Restrictions in Blockchains	CVSS3: 6.5	1% Низкий	11 месяцев назад

Уязвимостей на страницу