CVE-2018-20586

Опубликовано: 12 мар. 2020

Источник: nvd

CVSS3: 5.3

CVSS2: 4.3

EPSS Низкий

Описание

bitcoind and Bitcoin-Qt prior to 0.17.1 allow injection of arbitrary data into the debug log via an RPC call.

Ссылки

https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-20586
Exploit
Vendor Advisory
https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-20586
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0:rc4:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0:rc5:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.1:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.1:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.12.1:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13:*:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.0:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.0:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.0:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.0:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.1:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.1:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.1:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.1:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.2:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.13.2:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.0:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.0:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.0:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.0:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.1:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.1:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.1:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.2:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.2:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.2:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.14.3:*:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0.1:*:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.1:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.1:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.15.2:*:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0:rc3:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0:rc4:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.1:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.1:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.1:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.2:-:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.2:rc1:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.2:rc2:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.16.3:*:*:*:*:*:*:*

cpe:2.3:a:bitcoin:bitcoin_core:0.17.0:-:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00353

Низкий

5.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-116

Связанные уязвимости

CVE-2018-20586

CVSS3: 5.3

debian

почти 6 лет назад

bitcoind and Bitcoin-Qt prior to 0.17.1 allow injection of arbitrary d ...

GHSA-r873-jvcv-fxhw

github

больше 3 лет назад