Описание
In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a denial of service (locking) or a takeover.
Ссылки
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0xdc350d09f71c48c5d22fbe2741e4d6a03970e192 (исключая)
cpe:2.3:a:argent:recoverymanager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00251
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-347
Связанные уязвимости
github
больше 3 лет назад
In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a denial of service (locking) or a takeover.
EPSS
Процентиль: 48%
0.00251
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-347