The CosmosSDK has a critical security vulnerability, according to the cosmos network forum. The vulnerability was reported to the Tendermint team and will be patched soon. The fix will be available in v. 0.34.6 of the CosmosSDK. While the company still hasn’t disclosed the nature of the vulnerability, it says it will share the details within seven to 10 business days.
Cosmos is preparing a hard fork to upgrade the Cosmos mainnet.
Due to the severity of the issue, organisations that might have been affected have been contacted by Cosmos so that they can upgrade the system as soon as the fix is ready.
Update: This vulnerability was fixed after Cosmos validators applied the patch via a hard fork on block #482100