Summerpro

**Name of the Vulnerable Software and Affected Versions** Cosmos Network Ethermint versions <= v0.4.0 **Description** The issue is related to a transaction replay vulnerability in the EVM module. If a victim sends a very large nonce transaction, an attacker can replay the transaction through the application. This vulnerability affects specific Go packages, including github.com/cosmos/ethermint/rpc/namespaces/eth. The vulnerability can also be described as an authentication bypass by capture-replay. **Recommendations** For Cosmos Network Ethermint versions <= v0.4.0, consider disabling the EVM module or restricting its use to minimize the risk of exploitation until a patch is available. Restrict access to the github.com/cosmos/ethermint/rpc/namespaces/eth package to prevent potential abuse. Avoid using very large nonce transactions in the affected application to reduce the risk of transaction replay attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cosmos Network Ethermint versions <= v0.4.0 **Description** The issue is related to a cross-chain transaction replay vulnerability in the EVM module. This vulnerability is caused by the use of the same chainID and signature schemes with Ethereum for compatibility, allowing a verified signature in Ethereum to be valid in Ethermint with the same message content and chainID. This enables a "cross-chain transaction replay" attack. The vulnerability affects the github.com/cosmos/ethermint/rpc/namespaces/eth package. **Recommendations** For Cosmos Network Ethermint versions <= v0.4.0, consider disabling the EVM module until a patch is available to prevent cross-chain transaction replay attacks. Restrict access to the github.com/cosmos/ethermint/rpc/namespaces/eth package to minimize the risk of exploitation. Avoid using the same chainID and signature schemes with Ethereum until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.