Remote Attackers Can Execute Arbitrary Code via Ethereum's PepeGxng Smart Contract Mint Function
CVE-2024-51427

9.8CRITICAL

Key Information:

Vendor: Ethereum
Status: PepeGxng Smart Contract
Vendor: CVE Published:; 30 October 2024

What is CVE-2024-51427?

A security flaw has been identified in the PepeGxng smart contract deployed on the Ethereum blockchain. This vulnerability allows remote attackers to exploit the mint function, potentially leading to unauthorized actions on the contract. While the actual impact may vary and has been contested by third-party assessments, it is crucial for users and stakeholders to remain vigilant and take necessary precautions to safeguard their assets.

References

https://github.com/Wzy-source/Gala/blob/main/CVEs/PepeGxn...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 30, 2024

CVE-2024-51427 Data

JSON