Vulnerabilities > Openzeppelin

DATE CVE VULNERABILITY TITLE RISK
2023-12-09 CVE-2023-49798 Always-Incorrect Control Flow Implementation vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for smart contract development.
network
low complexity
openzeppelin CWE-670
7.5
7.5
2023-08-10 CVE-2023-40014 Improper Encoding or Escaping of Output vulnerability in Openzeppelin products
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-116
5.3
5.3
2023-06-16 CVE-2023-34459 Improper Validation of Integrity Check Value vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for smart contract development.
network
high complexity
openzeppelin CWE-354
5.9
5.9
2023-06-07 CVE-2023-34234 Unspecified vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for smart contract development.
network
low complexity
openzeppelin
5.3
5.3
2023-04-17 CVE-2023-30541 Interpretation Conflict vulnerability in Openzeppelin Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-436
5.3
5.3
2023-04-16 CVE-2023-30542 Unspecified vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin
8.8
8.8
2023-03-03 CVE-2023-26488 Incorrect Calculation vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-682
6.5
6.5
2023-02-03 CVE-2023-23940 Improper Verification of Cryptographic Signature vulnerability in Openzeppelin Contracts
OpenZeppelin Contracts for Cairo is a library for secure smart contract development written in Cairo for StarkNet, a decentralized ZK Rollup.
network
high complexity
openzeppelin CWE-347
5.3
5.3
2022-11-04 CVE-2022-39384 Improper Initialization vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
high complexity
openzeppelin CWE-665
5.6
5.6
2022-08-15 CVE-2022-35961 Improper Validation of Integrity Check Value vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-354
6.5
6.5