CVE-2022-35961 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-35961 PUBLISHED CVSS 7.900000095367432 HIGH

OpenZeppelin Contracts is a library for secure smart contract development. The functions `ECDSA.recover` and `ECDSA.tryRecover` are vulnerable to a kind of signature malleability due to accepting EIP-2098 compact signatures in addition to the traditional 65 byte signature format. This is only an issue for the functions that take a single `bytes` argument, and not the functions that take `r, v, s` or `r, vs` as separate arguments. The potentially affected contracts are those that implement signature reuse or replay protection by marking the signature itself as used rather than the signed message or a nonce included in it. A user may take a signature that has already been submitted, submit it again in a different form, and bypass this protection. The issue has been patched in 4.7.3.

EPSS 0.16% · 37.3th percentile

Risk Scores

CVSS v3.1

7.900000095367432

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:L

EPSS Score

0.16%

37.3th percentile

Affected Products

Vendor	Product	Versions
OpenZeppelin	openzeppelin-contracts	>= 4.1.0, < 4.7.3
openzeppelin	contracts	4.1.0
openzeppelin	contracts_upgradeable	4.1.0
openzeppelin	contracts	4.1.0
openzeppelin	contracts-upgradeable	4.1.0

Timeline

Aug 14, 2022 EPSS Score
Aug 14, 2022 CVE Published
Sep 28, 2022 EPSS Score
Nov 13, 2022 EPSS Score
Dec 28, 2022 EPSS Score
Feb 12, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 29, 2023 EPSS Score
May 14, 2023 EPSS Score
Jun 28, 2023 EPSS Score
Aug 13, 2023 EPSS Score
Sep 27, 2023 EPSS Score

References

Open in Interactive Console →