| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-54134 | @solana/web3.js modified package published to npm, containing malware that exfiltrates private key material | solana-labs | solana-web3.js | 中危 | - | 2024-12-04 15:20:54 | Deep Dive |
| CVE-2024-30253 | Handling untrusted input can result in a crash, leading to loss of availability / denial of service | solana-labs | solana-web3.js | High | 7.5 | 2024-04-17 15:07:28 | Deep Dive |
| CVE-2022-35917 | Weakness in Transfer Validation Logic in @solana/pay | solana-labs | solana-pay | Medium | 5.3 | 2022-08-01 21:10:11 | Deep Dive |
| CVE-2022-23066 | Solana rBPF - Incorrect Calculation in sdiv instruction | solana-labs | rbpf | Critical | 9.1 | 2022-05-09 06:25:09 | Deep Dive |