Kirugan

**Name of the Vulnerable Software and Affected Versions** Nethermind Juno versions prior to 0.12.5 **Description** The issue is caused by an integer overflow within the Sierra bytecode decompression logic in the "cairo-lang-starknet-classes" library. This allows remote attackers to trigger an infinite loop and high CPU usage by submitting a malicious Declare v2/v3 transaction, resulting in a denial-of-service condition for affected Starknet full-node implementations. **Recommendations** For versions prior to 0.12.5, update to version 0.12.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the "cairo-lang-starknet-classes" library to minimize the risk of exploitation. Avoid processing malicious Declare v2/v3 transactions until the issue is resolved.