CVE-2024-32644

CRITICAL9.1EPSS 0.62%

Evmos transaction execution not accounting for all state transition after interaction with precompiles in github.com/evmos/evmos

Published: 4/10/2024Modified: 3/3/2026

Description

Evmos transaction execution not accounting for all state transition after interaction with precompiles in github.com/evmos/evmos

Affected packages (31)

Go/github.com/evmos/evmosfrom 0
Go/github.com/evmos/evmos/v10from 0
Go/github.com/evmos/evmos/v11from 0
Go/github.com/evmos/evmos/v12from 0
Go/github.com/evmos/evmos/v13from 0
Go/github.com/evmos/evmos/v14from 0
Go/github.com/evmos/evmos/v15from 0
Go/github.com/evmos/evmos/v16from 0, < 17.0.0
Go/github.com/evmos/evmos/v16from 0
Go/github.com/evmos/evmos/v17from 0, < 17.0.0
Go/github.com/evmos/evmos/v2from 0
Go/github.com/evmos/evmos/v3from 0
Go/github.com/evmos/evmos/v4from 0
Go/github.com/evmos/evmos/v5from 0, <= 5.0.0
Go/github.com/evmos/evmos/v5from 0
Go/github.com/evmos/evmos/v6from 0
Go/github.com/evmos/evmos/v6from 0, <= 6.0.4
Go/github.com/evmos/evmos/v7from 0, <= 7.0.0
Go/github.com/evmos/evmos/v7from 0
Go/github.com/evmos/evmos/v8from 0
Go/github.com/evmos/evmos/v9from 0
Go/github.com/tharsis/evmosfrom 0, <= 1.1.3
Go/github.com/tharsis/evmosfrom 0
Go/github.com/tharsis/evmos/v2from 0, <= 2.0.2
Go/github.com/tharsis/evmos/v2from 0
Go/github.com/tharsis/evmos/v3from 0
Go/github.com/tharsis/evmos/v3from 0, <= 3.0.3
Go/github.com/tharsis/evmos/v4from 0, <= 4.0.2
Go/github.com/tharsis/evmos/v4from 0
Go/github.com/tharsis/evmos/v5from 0
Go/github.com/tharsis/evmos/v5from 0, <= 5.0.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

References (7)