1. CVE-Search
  2. CVE-2022-40769
ID CVE-2022-40769
Summary profanity through 1.60 has only four billion possible RNG initializations. Thus, attackers can recover private keys from Ethereum vanity addresses and steal cryptocurrency, as exploited in the wild in June 2022.
References
Vulnerable Configurations
  • cpe:2.3:a:profanity_project:profanity:0.1.7:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.1.7:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.1.9:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.1.9:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.1.10:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.1.10:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.0:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.0:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.0:rc3:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.0:rc3:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.1:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.1:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.3.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.3.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.0:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.0:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.1:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.1:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.1:rc2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.1:rc2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.3:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.3:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.3:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.3:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.3:rc2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.3:rc2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.3:rc3:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.3:rc3:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.5:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.5:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.5:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.5:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.6:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.6:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.6:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.6:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:cyg1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:cyg1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:cyg2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:cyg2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:cyg3:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:cyg3:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:patch1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:patch1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.4.7:rc2:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.4.7:rc2:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.5.0:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.5.0:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.5.0:patch1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.5.0:patch1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.5.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.5.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.6.0:-:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.6.0:-:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.6.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.6.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:0.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:0.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.1:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.3:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.4:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.11:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.11:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.12:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.12:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.21:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.21:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.22:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.22:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.31:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.31:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.50:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.50:*:*:*:*:*:*:*
  • cpe:2.3:a:profanity_project:profanity:1.60:*:*:*:*:*:*:*
    cpe:2.3:a:profanity_project:profanity:1.60:*:*:*:*:*:*:*
CVSS
Base: None
Impact:
Exploitability:
CWE CWE-338
CAPEC
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 21-09-2022 - 14:33
Published 18-09-2022 - 17:15
Last modified 21-09-2022 - 14:33
Back to Top