Gas Limit Enforcement Flaw in MANTRA Layer 1 Blockchain
CVE-2025-61595

8.8HIGH

Key Information:

Vendor: Mantra-chain
Status: Mantrachain
Vendor: CVE Published:; 2 October 2025

🔔 Create Mantra-chain Vulnerability Alert

What is CVE-2025-61595?

The MANTRA Layer 1 Blockchain has a vulnerability where versions up to 4.0.1 fail to enforce the transaction gas limit in their send hooks. This allows transactions to expend more gas than what is available, especially when combined with recursive calls within WebAssembly contracts, potentially leading to severely inflated gas consumption. The issue has been resolved in version 4.0.2.

Affected Version(s)

mantrachain < 4.0.2

References

https://github.com/MANTRA-Chain/mantrachain/security/advi...

x_refsource_CONFIRM

https://github.com/MANTRA-Chain/mantrachain/commit/30d36c...

x_refsource_MISC

CVSS V4

Score:

8.8

Severity:

HIGH

Confidentiality:

Low

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 2, 2025
Vulnerability Reserved
Sep 26, 2025

JSON