CVE-2025-66559

Name of the Vulnerable Software and Affected Versions Taiko Alethia versions prior to 2.3.1

Description Taiko Alethia, a permissionless rollup designed to scale Ethereum, contains an issue in the TaikoInbox. verifyBatches function (packages/protocol/contracts/layer1/based/TaikoInbox.sol:627-678). The function incorrectly advances the local transaction ID (tid) to a transition matching the current block hash before verifying the batch. If the verification loop breaks due to conditions like a cooldown window or an invalidated transition, the function still writes the newer tid into batches[lastVerifiedBatchId].verifiedTransitionId after decrementing the batch ID. This can cause the last verified batch to point to a transition index from the next batch, potentially corrupting the verified chain pointer.

Recommendations Update to version 2.3.1 or later.