Vulnerability in Vyperlang Vyper
CVE-2025-47285
Vyper is the Pythonic Programming Language for the Ethereum Virtual Machine. In versions up to and including 0.4.2rc1, `concat()` may skip evaluation of side effects when the length of an argument is zero. This is due to a fastpath in the…
EPSS: 0.004 (29.0th percentile) — read the EPSS interpretation.
Affected products
- Vyperlang Vyper — versions <= 0.4.2rc1
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)
- security-advisories@github.com (x_refsource_MISC)