exploitDog

GHSA-65gc-65c8-rc75

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

An exploitable improper authorization vulnerability exists in admin_peers API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigger this vulnerability.

An exploitable improper authorization vulnerability exists in admin_peers API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 48%

0.00253

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2017-12114

CVSS3: 6.8

nvd

около 8 лет назад

An exploitable improper authorization vulnerability exists in admin_peers API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigger this vulnerability.

CVE-2017-12114

CVSS3: 6.8

debian

около 8 лет назад

An exploitable improper authorization vulnerability exists in admin_pe ...

EPSS

Процентиль: 48%

0.00253

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-863