Vulnerabilities > CVE-2023-46247 - Off-by-one Error vulnerability in Vyperlang Vyper

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

vyperlang

CWE-193

NVD

Published: 2023-12-13

Updated: 2023-12-19

Summary

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Contracts containing large arrays might underallocate the number of slots they need by 1. Prior to v0.3.8, the calculation to determine how many slots a storage variable needed used `math.ceil(type_.size_in_bytes / 32)`. The intermediate floating point step can produce a rounding error if there are enough bits set in the IEEE-754 mantissa. Roughly speaking, if `type_.size_in_bytes` is large (> 2**46), and slightly less than a power of 2, the calculation can overestimate how many slots are needed by 1. If `type_.size_in_bytes` is slightly more than a power of 2, the calculation can underestimate how many slots are needed by 1. This issue is patched in version 0.3.8.

Vulnerable Configurations

Part	Description	Count
Application	Vyperlang Vyperlang Vyper 0.0.4 Vyperlang Vyper 0.1.0 Vyperlang Vyper 0.2.0 Vyperlang Vyper 0.2.1 Vyperlang Vyper 0.2.2 Vyperlang Vyper 0.2.3 Vyperlang Vyper 0.2.4 Vyperlang Vyper 0.2.5 Vyperlang Vyper 0.2.6 Vyperlang Vyper 0.2.7 Vyperlang Vyper 0.2.8 Vyperlang Vyper 0.2.9 Vyperlang Vyper 0.2.10 Vyperlang Vyper 0.2.11 Vyperlang Vyper 0.2.12 Vyperlang Vyper 0.2.13 Vyperlang Vyper 0.2.14 Vyperlang Vyper 0.2.15 Vyperlang Vyper 0.2.16 Vyperlang Vyper 0.3.0 Vyperlang Vyper 0.3.1 Vyperlang Vyper 0.3.2 Vyperlang Vyper 0.3.3 Vyperlang Vyper 0.3.4 Vyperlang Vyper 0.3.5 Vyperlang Vyper 0.3.6 Vyperlang Vyper 0.3.7	43

Common Weakness Enumeration (CWE)

CWE-193 - Off-by-one Error

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References