Every CVE whose affected-product data names Iohk Hydra, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-38701 — CVSS 9.1 (critical): Hydra is the layer-two scalability solution for Cardano. Users of the Hydra head protocol send the UTxOs they wish to commit into the Hydra…
CVE-2023-42448 — CVSS 8.1 (high): Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, the specification states that the contestation period in…
CVE-2023-42449 — CVSS 8.1 (high): Hydra is the two-layer scalability solution for Cardano. Prior to version 0.13.0, it is possible for a malicious head initializer to…
CVE-2023-42806 — CVSS 6.5 (medium): Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, not signing and verifying `$\mathsf{cid}$` allows an…