CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-29511

evm is a pure Rust implementation of Ethereum Virtual Machine. Prior to the patch, when executing specific EVM opcodes related to memory operations that use `evm_core::Memory::copy_large`, the `evm` crate can over-allocate memory when it is not needed, making it possible for an attacker to perform denial-of-service attack. The flaw was corrected in commit `19ade85`. Users should upgrade to `==0.21.1, ==0.23.1, ==0.24.1, ==0.25.1, >=0.26.1`. There are no workarounds. Please upgrade your `evm` crate version.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.4%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2021-29511

Evm Project » Evm » Version: N/A

cpe:2.3:a:evm_project:evm:-
Evm Project » Evm » Version: 0.11.0

cpe:2.3:a:evm_project:evm:0.11.0
Evm Project » Evm » Version: 0.11.1

cpe:2.3:a:evm_project:evm:0.11.1
Evm Project » Evm » Version: 0.13.0

cpe:2.3:a:evm_project:evm:0.13.0
Evm Project » Evm » Version: 0.13.1

cpe:2.3:a:evm_project:evm:0.13.1
Evm Project » Evm » Version: 0.14.0

cpe:2.3:a:evm_project:evm:0.14.0
Evm Project » Evm » Version: 0.14.1

cpe:2.3:a:evm_project:evm:0.14.1
Evm Project » Evm » Version: 0.14.2

cpe:2.3:a:evm_project:evm:0.14.2
Evm Project » Evm » Version: 0.15.0

cpe:2.3:a:evm_project:evm:0.15.0
Evm Project » Evm » Version: 0.16.0

cpe:2.3:a:evm_project:evm:0.16.0
Evm Project » Evm » Version: 0.16.1

cpe:2.3:a:evm_project:evm:0.16.1
Evm Project » Evm » Version: 0.17.0

cpe:2.3:a:evm_project:evm:0.17.0
Evm Project » Evm » Version: 0.17.1

cpe:2.3:a:evm_project:evm:0.17.1
Evm Project » Evm » Version: 0.17.2

cpe:2.3:a:evm_project:evm:0.17.2
Evm Project » Evm » Version: 0.17.3

cpe:2.3:a:evm_project:evm:0.17.3
Evm Project » Evm » Version: 0.18.0

cpe:2.3:a:evm_project:evm:0.18.0
Evm Project » Evm » Version: 0.18.3

cpe:2.3:a:evm_project:evm:0.18.3
Evm Project » Evm » Version: 0.18.4

cpe:2.3:a:evm_project:evm:0.18.4
Evm Project » Evm » Version: 0.18.5

cpe:2.3:a:evm_project:evm:0.18.5
Evm Project » Evm » Version: 0.19.0

cpe:2.3:a:evm_project:evm:0.19.0
Evm Project » Evm » Version: 0.20.0

cpe:2.3:a:evm_project:evm:0.20.0
Evm Project » Evm » Version: 0.21.0

cpe:2.3:a:evm_project:evm:0.21.0
Evm Project » Evm » Version: 0.22.0

cpe:2.3:a:evm_project:evm:0.22.0
Evm Project » Evm » Version: 0.23.0

cpe:2.3:a:evm_project:evm:0.23.0
Evm Project » Evm » Version: 0.24.0

cpe:2.3:a:evm_project:evm:0.24.0
Evm Project » Evm » Version: 0.25.0

cpe:2.3:a:evm_project:evm:0.25.0
Evm Project » Evm » Version: 0.26.0

cpe:2.3:a:evm_project:evm:0.26.0
Evm Project » Evm » Version: 0.6.2

cpe:2.3:a:evm_project:evm:0.6.2
Evm Project » Evm » Version: 0.7.0

cpe:2.3:a:evm_project:evm:0.7.0
Evm Project » Evm » Version: 0.7.1

cpe:2.3:a:evm_project:evm:0.7.1
Evm Project » Evm » Version: 0.9.2

cpe:2.3:a:evm_project:evm:0.9.2
Evm Project » Evm » Version: 0.9.3

cpe:2.3:a:evm_project:evm:0.9.3
Evm Project » Evm » Version: 0.9.4

cpe:2.3:a:evm_project:evm:0.9.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-29511

Products

Pricing

Contact Us