openzeppelin Openzeppelin Contracts Vulnerabilities
Openzeppelin Openzeppelin-contracts vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Vulnerability in OpenZeppelin Contracts Affecting Smart Contract Development
CVE-2025-54070OpenzeppelinOpenzeppelin-contracts6.9MEDIUMSecure Smart Contract Development Library Fixes Buffer Overflow Vulnerability
CVE-2024-27094OpenzeppelinOpenzeppelin-contracts6.5MEDIUMDuplicated execution of subcalls in OpenZeppelin Contracts
CVE-2023-49798OpenZeppelinopenzeppelin-contracts5.9MEDIUMOpenZeppelin Contracts's ERC2771Context with custom forwarder may lead to zero-valued _msgSender
CVE-2023-40014OpenzeppelinOpenzeppelin-contracts5.3MEDIUMOpenZeppelin Contracts's MerkleProof multiproofs may allow proving arbitrary leaves for specific trees
CVE-2023-34459OpenzeppelinOpenzeppelin-contracts5.3MEDIUMGovernor proposal creation may be blocked by frontrunning in OpenZeppelin
CVE-2023-34234OpenzeppelinOpenzeppelin-contracts5.3MEDIUMTransparentUpgradeableProxy clashing selector calls may not be delegated in @openzeppelin/contracts
CVE-2023-30541OpenzeppelinOpenzeppelin-contracts5.3MEDIUMGovernorCompatibilityBravo may trim proposal calldata
CVE-2023-30542OpenzeppelinOpenzeppelin-contracts6.8MEDIUMOpenZeppelin Contracts contains Incorrect Calculation
CVE-2023-26488OpenzeppelinOpenzeppelin-contracts6.5MEDIUMOpenZeppelin Contracts initializer reentrancy may lead to double initialization
CVE-2022-39384OpenzeppelinOpenzeppelin-contracts5.6MEDIUMECDSA signature malleability in OpenZeppelin Contracts
CVE-2022-35961OpenzeppelinOpenzeppelin-contracts7.9HIGHUnbounded gas consumption in @openzeppelin/contracts
CVE-2022-35915OpenzeppelinOpenzeppelin-contracts5.3MEDIUMCross chain utilities for Arbitrum L2 see EOA calls as cross chain calls
CVE-2022-35916OpenzeppelinOpenzeppelin-contracts5.3MEDIUMGovernorVotesQuorumFraction updates to quorum may affect past defeated proposals in @openzeppelin/contracts
CVE-2022-31198OpenzeppelinOpenzeppelin-contracts7.5HIGHOpenZeppelin Contracts's ERC165Checker may revert instead of returning false
CVE-2022-31170OpenzeppelinOpenzeppelin-contracts7.5HIGHOpenZeppelin Contracts's SignatureChecker may revert on invalid EIP-1271 signers
CVE-2022-31172OpenzeppelinOpenzeppelin-contracts7.5HIGHUUPSUpgradeable vulnerability in OpenZeppelin Contracts
CVE-2021-41264OpenzeppelinOpenzeppelin-contracts9.8CRITICALTimelockController vulnerability in OpenZeppelin Contracts
CVE-2021-39167OpenzeppelinOpenzeppelin-contracts10CRITICAL
17 July 2025
21 March 2024
9 December 2023
10 August 2023
16 June 2023
7 June 2023
17 April 2023
16 April 2023
3 March 2023
4 November 2022
15 August 2022
1 August 2022
22 July 2022
12 November 2021
27 August 2021
No more vulnerabilities to load.