Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/cosmos/cosmos-sdk

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/cosmos/cosmos-sdk in go

High
4 months ago

Cosmos SDK's Integer Overflow vulnerability in its Validator Rewards pool can cause a chain halt GSA_kwCzR0hTQS1wMjJoLTNtMnYtY21naM4ABJ7F

go github.com/cosmos/cosmos-sdk
High
7 months ago

Cosmos SDK: x/group can halt when erroring in EndBlocker GSA_kwCzR0hTQS00N3d3LWZmODQtNGpyZ84ABFZ7

go github.com/cosmos/cosmos-sdk
High
8 months ago

Cosmos SDK: Groups module can halt chain when handling a malicious proposal GSA_kwCzR0hTQS14NXZ4LTk1aDctcnY0cM4ABEq6

go github.com/cosmos/cosmos-sdk
High
10 months ago

ASA-2024-0012, ASA-2024-0013: CosmosSDK: Transaction decoding may result in a stack overflow or resource exhaustion GSA_kwCzR0hTQS04d2NjLW02ajItcXh2bc4ABCgI

go cosmossdk.io/x/tx, github.com/cosmos/cosmos-sdk
High
over 1 year ago

ASA-2024-006: ValidateVoteExtensions helper function in Cosmos SDK may allow incorrect voting power assumptions GSA_kwCzR0hTQS05NXJ4LW05bTUtbTk0ds4AA56u

go github.com/cosmos/cosmos-sdk
Low
over 1 year ago

ASA-2024-005: Potential slashing evasion during re-delegation GSA_kwCzR0hTQS04Nmg1LXhjcHgtY2ZxY84AA5jS

go github.com/cosmos/cosmos-sdk
Moderate
over 1 year ago

ASA-2024-002: Default `PrepareProposalHandler` may produce invalid proposals when used with default `SenderNonceMempool` GSA_kwCzR0hTQS0yNTU3LXg5bWctNzZ3OM4AA5Zz

go github.com/cosmos/cosmos-sdk
Moderate
over 1 year ago

ASA-2024-003: Missing `BlockedAddressed` Validation in Vesting Module GSA_kwCzR0hTQS00ajkzLWZtOTItcnA0bc4AA5Zy

go github.com/cosmos/cosmos-sdk
Moderate
about 2 years ago

Cosmos-SDK Cosmovisor component may be vulnerable to denial of service GSA_kwCzR0hTQS0yM3B4LW13MnAtNDZxbc4AA1vh

go github.com/cosmos/cosmos-sdk
Moderate
over 2 years ago

Barberry Security Advisory - regarding x/auth periodic vesting accounts GSA_kwCzR0hTQS1qMmNyLWpjMzktd3B4Nc4AA0fr

go github.com/cosmos/cosmos-sdk
Low
over 2 years ago

github.com/cosmos/cosmos-sdk's x/crisis does not charge ConstantFee GSA_kwCzR0hTQS13NXc1LTI4ODItNDdwY84AA0KY

go github.com/cosmos/cosmos-sdk
Low
over 2 years ago

Go package github.com/cosmos/cosmos-sdk module x/crisis does NOT cause chain halt GSA_kwCzR0hTQS1xZmM1LTZyM2otamoyMs4AAzmA

go github.com/cosmos/cosmos-sdk
Moderate
about 4 years ago

Authz Module Non-Determinism GSA_kwCzR0hTQS0ycDZyLTM3cDktODlwMs0Wnw

go github.com/cosmos/cosmos-sdk

Filter by Severity

Moderate 5 High 5 Low 3