CNNVD-202507-3428 Information
Jul 27, 2025
cve
CNNVD ID
CNNVD-202507-3428
Related CVE
- CNNVD Published: 2025-07-27
Description (Chinese)
cosmwasm-std crate是CosmWasm开源的一个在 Wasm 中为 Cosmos SDK 构建智能合约的框架。 cosmwasm-std crate 2.0.2之前版本存在输入验证错误漏洞,该漏洞源于整数溢出可能导致计算错误。
Description (English)
Cosmwasm-std crime is an open-source CosmWasm framework for building smart contracts for Cosmos SDK in Wasm. There was an input-validation bug before version cosmwasm-std crime 2.0.2, which originated from an integer spill that could lead to an arithmetic error.
Hazard Level
Critical
Vulnerability Type
输入验证错误
Affected Vendor
CosmWasm
Published
2025-07-27
Last Modified
2026-02-24
References
https://rustsec.org/advisories/RUSTSEC-2024-0338.html https://crates.io/crates/cosmwasm-std https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2024-002.md https://access.redhat.com/security/cve/cve-2024-58263
Patch
https://github.com/CosmWasm/cosmwasm/releases
Share on: