{"id":9784,"date":"2025-08-05T19:55:22","date_gmt":"2025-08-05T19:55:22","guid":{"rendered":"http:\/\/localhost\/?p=9784"},"modified":"2025-08-05T19:55:22","modified_gmt":"2025-08-05T19:55:22","slug":"risc-zero-underconstrained-vulnerability-division","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=9784","title":{"rendered":"RISC Zero Underconstrained Vulnerability: Division"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nRISC Zero Underconstrained Vulnerability: Division<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-08-05T23:35:09.208Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-08-05T23:35:09.208Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nrisc0<\/td>\n<\/tr>\n
Product<\/th>\nrisc0<\/td>\n<\/tr>\n
Version<\/th>\n>= 2.0.0, < 2.2.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n2.7 (LOW)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:N\/VC:N\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:U<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nThis vulnerability affects the RISC Zero platform, where signed integer division can produce multiple outputs for certain inputs and division by zero is underconstrained. These issues are fixed in later versions of the affected packages.<\/td>\n<\/tr>\n
AI Severity<\/th>\nLow<\/td>\n<\/tr>\n
AI Vendor<\/th>\nRISC Zero Project<\/td>\n<\/tr>\n
AI Product<\/th>\nRISC Zero<\/td>\n<\/tr>\n
AI Version<\/th>\n2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n