🔐 CVE Alert

CVE-2026-59252

UNKNOWN 0.0

Missing gas_limit validation in mpp Tempo fee-payer enables wallet drain

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Improper Validation of Specified Quantity in Input in ZenHive mpp allows an unauthenticated remote client to drain the fee-payer wallet, resulting in denial of service for legitimate clients. When the mpp Elixir library is configured as fee payer (fee_payer: true), the MPP.Methods.Tempo payment method co-signs and broadcasts a client-supplied EVM transaction without first validating that the client-supplied gas_limit is sufficient to complete the intended call. A malicious client can submit a signed transferWithMemo transaction with gas_limit deliberately set just below the amount required for successful execution. The server co-signs the transaction and broadcasts it via rpc_broadcast_sync. The transaction runs out of gas during EVM execution and reverts, but the fee-payer wallet is still charged for the burned gas while the client pays nothing and receives no resource. Repeated requests from one or more malicious clients drain the fee-payer wallet at near-zero cost to the attacker, ultimately preventing the server from sponsoring gas for legitimate payment requests. The wait_for_confirmation = false (optimistic) path is also affected: it invokes simulate_payment_call via eth_call, but that simulation omits the gas parameter and therefore does not catch out-of-gas conditions. This issue affects mpp: from 0.2.0 before 0.6.0.

CWE CWE-1284
Vendor zenhive
Product mpp
Published Jul 17, 2026
Stay Ahead of the Next One

Get instant alerts for zenhive mpp

Be the first to know when new unknown vulnerabilities affecting zenhive mpp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

ZenHive / mpp
0.2.0 < 0.6.0
ZenHive / mpp
d29d54e507918db00a5b65d90136b73166c017d7 < d84e3e528db39654540c2035ea0fbdf7b950d3d1

References

NVD ↗ CVE.org ↗ EPSS Data ↗
github.com: https://github.com/ZenHive/mpp/security/advisories/GHSA-vj8p-hp9x-gh47 cna.erlef.org: https://cna.erlef.org/cves/CVE-2026-59252.html osv.dev: https://osv.dev/vulnerability/EEF-CVE-2026-59252 github.com: https://github.com/ZenHive/mpp/commit/d84e3e528db39654540c2035ea0fbdf7b950d3d1

Credits

Kian Kai Ang E.FU Jonatan Männchen / EEF