Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Cosmwasm Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-58263 1 Cosmwasm 1 Cosmwasm-std 2025-08-07 N/A 3.7 LOW
The cosmwasm-std crate before 2.0.2 for Rust allows integer overflows that cause incorrect contract calculations.
CVE-2024-58264 1 Cosmwasm 1 Serde-json-wasm 2025-08-06 N/A 3.2 LOW
The serde-json-wasm crate before 1.0.1 for Rust allows stack consumption via deeply nested JSON data.
CVE-2025-25500 1 Cosmwasm 1 Cosmwasm 2025-05-22 N/A 7.5 HIGH
An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attackers to deploy a contract without capability enforcement, and execute unauthorized actions on the blockchain.