CVE-2025-25500 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. Th…
High CVSS: 7.5

CVE-2025-25500

An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attackers to deploy a contract without capability enforcement, and execute unauthorized actions on the blockchain.
Vendor
Cosmwasm
Product
Cosmwasm
CWE
CWE-284
Yayın Tarihi
2025-03-18 14:15:43
Güncelleme
2025-05-22 19:52:28
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-284 Cosmwasm HIGH Cosmwasm 2025

Referanslar

https://gist.github.com/H3T76/8096a6ff9410f3a6d9a25db1a68ae657#file-cve-2025-25500 https://gist.github.com/H3T76/8096a6ff9410f3a6d9a25db1a68ae657#file-cve-2025-25500