MEDIUM🇵🇱 Wersja polska

CVE-2024-58131

CVSS 4.0v3.1pub. 2025-04-06upd. 2025-04-08

FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node (that has modified the codebase to allow a large min_seal_time value) joins a blockchain network.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L
  • Fisco Bcos

    APP
    Fisco-Bcos
    3.11.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-28936HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node can trigger an integer ...

CVE-2022-28937HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposa...

CVE-2022-26534HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via a malicious viewch...

CVE-2021-46359HIGH7.5ten sam produkt

FISCO-BCOS release-3.0.0-rc2 contains a denial of service vulnerability. Some transactions may not be committe...

CVE-2021-35041HIGH7.5ten sam produkt

The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a cra...