Seunlanlege
·
Published
2025-01-28
·
Updated
2025-01-29
·
CVE-2025-24800
9.3
Critical
| Base vector | Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Hyperbridge versions prior to 15.0.1
Description:
A critical issue was discovered in the `ismp-grandpa` crate, allowing a malicious prover to easily convince the verifier of the finality of arbitrary headers. This could be used to steal funds or compromise other kinds of cross-chain applications. The vulnerability manifests as a verifier that only accepts incorrect signatures of Grandpa precommits. The issue remained undetected even with integration tests due to a misconfigured prover. The verifier will also accept malicious GRANDPA signatures for any precommit message.
Recommendations:
For versions prior to 15.0.1, update to version 15.0.1 to prevent theft and compromises. Users who rely on the compromised versions must upgrade immediately, as all vulnerable versions of the crate have been yanked. As a temporary workaround, consider restricting the use of the `ismp-grandpa` crate until the update is applied.
Fix
Improper Verification of Cryptographic Signature