HIGH🇵🇱 Wersja polska

CVE-2022-36008

CVSS 7.1v3.1pub. 2022-08-19upd. 2024-11-21

Frontier is Substrate's Ethereum compatibility layer. A security issue was discovered affecting parsing of the RPC result of the exit reason in case of EVM reversion. In release build, this would cause the exit reason being incorrectly parsed and returned by RPC. In debug build, this would cause an overflow panic. No action is needed unless you have a bridge node that needs to distinguish different reversion exit reasons and you used RPC for this. There are currently no known workarounds.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L
  • Parity Frontier

    APP
    Parity
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-45130HIGH7.5ten sam produkt

Frontier is Substrate's Ethereum compatibility layer. Prior to commit aea528198b3b226e0d20cce878551fd4c0e3d5d0...

CVE-2023-28431HIGH7.5ten sam produkt

Frontier is an Ethereum compatibility layer for Substrate. Frontier's `modexp` precompile uses `num-bigint` cr...

CVE-2022-39242MEDIUM5.3ten sam produkt

Frontier is an Ethereum compatibility layer for Substrate. Prior to commit d3beddc6911a559a3ecc9b3f08e153dbe37...

CVE-2022-31111MEDIUM5.3ten sam produkt

Frontier is Substrate's Ethereum compatibility layer. In affected versions the truncation done when converting...

CVE-2022-21685MEDIUM6.5ten sam produkt

Frontier is Substrate's Ethereum compatibility layer. Prior to commit number `8a93fdc6c9f4eb1d2f2a11b7ff1d12d7...