CVE-2026-28410 in contractsinfo

Zusammenfassung

von MITRE • 05.03.2026

The Graph is an indexing protocol for querying networks like Ethereum, IPFS, Polygon, and other blockchains. Prior to version 3.0.0, a flaw in the token vesting contracts allows users to access tokens that should still be locked according to their vesting schedule. This issue has been patched in version 3.0.0.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

GitHub M

Reservieren

27.02.2026

Veröffentlichung

05.03.2026

Moderieren

akzeptiert

Eintrag

VDB-349295

CPE

bereit

CWE

CWE-284 (bestätigt)

CVSS

8.1 (NVD)

EPSS

0.00044

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-28410
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-28410
CVE Details	https://www.cvedetails.com/cve/CVE-2026-28410/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!