Browse all 4 CVE security advisories affecting risc0. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-61588 | risc0 vulnerable to arbitrary code execution in guest via memory safety failure in `sys_read` — risc0CWE-94 | 8.8AI | HighAI | 2025-10-01 |
| CVE-2025-54873 | RISC Zero Underconstrained Vulnerability: Division — risc0CWE-369 | 5.5AI | MediumAI | 2025-08-05 |
| CVE-2025-52884 | risc0-ethereum-contracts allows invalid commitment with digest value of zero to be accepted by Steel.validateCommitment — risc0-ethereumCWE-159 | - | -AI | 2025-06-24 |
| CVE-2025-52484 | RISC Zero zkVM Underconstrained Vulnerability — risc0CWE-345 | 9.6AI | CriticalAI | 2025-06-20 |
This page lists every published CVE security advisory associated with risc0. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.