CVE-2025-25500
CVE-2025-25500
Título es
CVE-2025-25500
Mar, 18/03/2025 – 14:15
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2025-25500
Descripción en
An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attackers to deploy a contract without capability enforcement, and execute unauthorized actions on the blockchain.
18/03/2025
18/03/2025
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
Pendiente de análisis
Referencias
https://gist.github.com/H3T76/8096a6ff9410f3a6d9a25db1a68ae657#file-cve-2025-25500
https://github.com/CVEProject/cveproject.github.io/blob/gh-pages/requester/reservation-guidelines.md
Enviar en el boletín
Off
