EVM – Cosmos Convergence Research From Security Base: Part 1

This report examines Evmos/Ethermint’s dual-stack integration of the Ethereum VM into the Cosmos SDK, identifies systemic discrepancies in gas/fee handling that led to critical vulnerabilities (including documented fee-theft incidents such as Cronos), analyzes two primary exploitation paths—direct bypass of EthAnteHandler and indirect bypass via nested Authz MsgExec—and outlines fixes and mitigation efforts while noting Evmos’s plan to deprecate native Cosmos transactions in favor of pure EVM alignment.