VDB

GCVE-110-OSM-2026-673

GCVE-110-OSM-2026-673
Advisory PublishedCVSS 8.8/10
Vulnetix · Advisory published June 10, 2026
This malware is designed to intercept and manipulate cryptocurrency transactions. It operates by monitoring the system clipboard and silently replacing copied wallet addresses with those controlled by an attacker. When a victim pastes what they believe to be their intended address, the transaction is redirected elsewhere—often permanently. The malware monitors clipboard activity on the victim’s device. Whenever a wallet address (BTC, ETH, etc.) is copied, the malware detects the format. It substitutes the copied address with one belonging to the attacker. The victim unknowingly pastes and confirms the wrong address, sending funds to the attacker. Because most crypto transactions are irreversible, recovery is virtually impossible.

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownariadne-federation* (affected)
unknownall (affected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›