CVE-2024-43366

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-43366

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-43366.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-43366

Aliases

GHSA-8j77-7rrv-6pxx

Published

2024-08-15T20:11:56.456Z

Modified

2025-12-05T05:58:49.627204Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

zkvyper ignored loop range bounds

Details

zkvyper is a Vyper compiler. Starting in version 1.3.12 and prior to version 1.5.3, since LLL IR has no Turing-incompletness restrictions, it is compiled to a loop with a much more late exit condition. It leads to a loss of funds or other unwanted behavior if the loop body contains it. However, more real-life use cases like iterating over an array are not affected. No contracts were affected by this issue, which was fixed in version 1.5.3. Upgrading and redeploying affected contracts is the only way to avoid the vulnerability.

Database specific

{
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43366.json",
    "cwe_ids": [
        "CWE-835"
    ]
}

References

Affected packages

Git / github.com/matter-labs/era-compiler-vyper

Affected ranges

Type: GIT
Repo: https://github.com/matter-labs/era-compiler-vyper
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

b80a9b4ea43aef1ab0415fc6cab33683c44c15bc

Affected versions

1.*

1.3.17

1.4.0

1.4.1

1.5.0

1.5.1

1.5.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-43366.json"