Описание
An exploitable improper authorization vulnerability exists in miner_setEtherbase API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the restricted functionality resulting in authorization bypass.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ethereum:cpp-ethereum:-:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00558
Низкий
6.8 Medium
CVSS3
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 8.1
debian
около 8 лет назад
An exploitable improper authorization vulnerability exists in miner_se ...
CVSS3: 8.1
github
больше 3 лет назад
An exploitable improper authorization vulnerability exists in miner_setEtherbase API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the restricted functionality resulting in authorization bypass.
EPSS
Процентиль: 68%
0.00558
Низкий
6.8 Medium
CVSS3
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-863