CVE-2022-24916 Information
Jun 07, 2022
cve
Description
Optimism before @eth-optimism/l2geth@0.5.11 allows economic griefing because a balance is duplicated upon contract self-destruction.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Reference
https://github.com/ethereum-optimism/optimism/compare/%40eth-optimism%2Fl2geth%400.5.10…%40eth-optimism%2Fl2geth%400.5.11 https://github.com/ethereum-optimism/optimism/pull/2146 https://www.saurik.com/optimism.html https://news.ycombinator.com/item?id=30289240 https://optimismpbc.medium.com/disclosure-fixing-a-critical-bug-in-optimisms-geth-fork-a836ebdf7c94
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
HIGH
Base Score
NONE
Base Severity
7.5
Share on: