cvedb.io
CVE-2022-40769
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-09-18T17:15:09.667 · Last modified 2026-06-17T05:02:00.980

Summary

profanity through 1.60 has only four billion possible RNG initializations. Thus, attackers can recover private keys from Ethereum vanity addresses and steal cryptocurrency, as exploited in the wild in June 2022.

Affected products

profanity_project — profanity

Does this affect you?

Add your gear to cvedb and we'll alert you only when profanity_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.