How severe is CVE-2022-24738?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.4 out of 10.

What type of vulnerability is CVE-2022-24738?

This is classified as CWE-287, which is a common weakness in software security.

CVE-2022-24738 - HIGH Severity | CVSS 7.4

Vulnerability Description

Evmos is the Ethereum Virtual Machine (EVM) Hub on the Cosmos Network. In versions of evmos prior to 2.0.1 attackers are able to drain unclaimed funds from user addresses. To do this an attacker must create a new chain which does not enforce signature verification and connects it to the target evmos instance. The attacker can use this joined chain to transfer unclaimed funds. Users are advised to upgrade. There are no known workarounds for this issue.

Related Vulnerabilities

CVE-2017-7930

HIGH

CVSS:7.4(High)

An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Data Archive has protocol flaws with the potential to expose change records in the ...

CWE-2872017

CVE-2018-7958

HIGH

CVSS:7.4(High)

There is an anonymous TLS cipher suites supported vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to hijack the connection from a client w...

CWE-2872018

CVE-2020-4747

HIGH

CVSS:7.4(High)

IBM Connect:Direct for UNIX 6.1.0, 6.0.0, 4.3.0, and 4.2.0 can allow a local or remote user to obtain an authenticated CLI session due to improper authentication methods. IBM X-Force ID: 188516.

CWE-2872020

CVE-2020-4983

HIGH

CVSS:7.4(High)

IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. IBM X-Force ID: 192586.

CWE-2872020

CVE-2021-29487

HIGH

CVSS:7.4(High)

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can exploit this vulnerability to bypass authentication and takeover of ...

CWE-2872021

CVE-2022-2533

HIGH

CVSS:7.4(High)

An issue has been discovered in GitLab affecting all versions starting from 12.10 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab wa...

CWE-2872022