What is CVE-2023-32059?

CVE-2023-32059 is a high-severity vulnerability in Vyperlang Vyper, classified under CWE-683. CVSS score: 7.5/10. Published 2023-05-11.

How severe is CVE-2023-32059?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Vyperlang Vyper

CVE-2023-32059

Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to version 0.3.8, internal calls with default arguments are compiled incorrectly. Depending on the number of arguments provided in the call, the defaults a…

EPSS: 0.002 (43.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

Vyperlang Vyper — versions < 0.3.8

Weakness classification (CWE)

CWE-683

References

https://github.com/vyperlang/vyper/security/advisories/GHSA-ph9x-4vc9-m39g (x_refsource_CONFIRM)
https://github.com/vyperlang/vyper/commit/c3e68c302aa6e1429946473769dd1232145822ac (x_refsource_MISC)

Frequently asked questions

What is CVE-2023-32059?: CVE-2023-32059 is a high-severity vulnerability in Vyperlang Vyper, classified under CWE-683. CVSS score: 7.5/10. Published 2023-05-11.
How severe is CVE-2023-32059?: High severity. CVSS v3 base score is 7.5 out of 10.