All 2 CVE vulnerabilities found in solana-web3.js, with AI-generated Chinese analysis, references, and POCs.
Vendor: solana-labs
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-54134 | @solana/web3.js modified package published to npm, containing malware that exfiltrates private key material CWE-200 | 8.6 | - | 2024-12-04 |
| CVE-2024-30253 | Handling untrusted input can result in a crash, leading to loss of availability / denial of service CWE-119 | 7.5 | High | 2024-04-17 |
All 2 known CVE vulnerabilities affecting solana-web3.js with full Chinese analysis, references, and POCs where available.