HIGH🇵🇱 Wersja polska

CVE-2021-35041

CVSS 7.5v3.1pub. 2021-06-24upd. 2024-11-21

The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decoded by the node correctly. As a result, the node may consume the memory sustainably and crash. More details are shown at: https://github.com/FISCO-BCOS/FISCO-BCOS/issues/1951

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Fisco Bcos

    APP
    Fisco-Bcos
    2.7.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-28936HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node can trigger an integer ...

CVE-2022-28937HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposa...

CVE-2022-26534HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via a malicious viewch...

CVE-2021-46359HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 contains a denial of service vulnerability. Some transactions may not be committe...

CVE-2024-58131MEDIUM4.0ten sam produkt

FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed...