VDB
GCVE-110-OSM-2026-673
GCVE-110-OSM-2026-673
Advisory PublishedCVSS 8.8/10
This malware is designed to intercept and manipulate cryptocurrency transactions. It operates by monitoring the system clipboard and silently replacing copied wallet addresses with those controlled by an attacker. When a victim pastes what they believe to be their intended address, the transaction is redirected elsewhere—often permanently.
The malware monitors clipboard activity on the victim’s device.
Whenever a wallet address (BTC, ETH, etc.) is copied, the malware detects the format.
It substitutes the copied address with one belonging to the attacker.
The victim unknowingly pastes and confirms the wrong address, sending funds to the attacker.
Because most crypto transactions are irreversible, recovery is virtually impossible.
Weaknesses (CWE)
CWE-506Embedded Malicious Code
Risk Scores
CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| unknown | ariadne-federation | * (affected) | — |
| unknown | all (affected) | — |
Aliases
References
Browse GCVE Records
73,040 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.