PT-2025-31716 · Npm · @Account-Kit/Smart-Contracts
Published
2025-07-21
·
Updated
2025-07-21
CVSS v4.0
8.0
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U |
Impact
A potential security issue has been mitigated on old account deployment functions from the factory. Smart wallets in use on all existing supported networks are not impacted.
Patches
Please direct creation of new wallets to either
createSemiModularAccount on AccountFactory.sol or createWebAuthnAccount on WebAuthnFactory.sol.Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
@Account-Kit/Smart-Contracts