CVE-2021-37492

Опубликовано: 07 фев. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue discovered in src/wallet/wallet.cpp in Ravencoin Core 4.3.2.1 and earlier allows attackers to view sensitive information via CWallet::CreateTransactionAll() function.

Ссылки

http://ravencoin.com
Product
https://github.com/RavenProject/Ravencoin/blob/master/src/wallet/wallet.cpp#L3657-L3671
Exploit
https://github.com/RavenProject/Ravencoin/issues/1086
Issue Tracking
https://github.com/bitcoin/bitcoin/commit/2fb9c1e6681370478e24a19172ed6d78d95d50d3
Not Applicable
http://ravencoin.com
Product
https://github.com/RavenProject/Ravencoin/blob/master/src/wallet/wallet.cpp#L3657-L3671
Exploit
https://github.com/RavenProject/Ravencoin/issues/1086
Issue Tracking
https://github.com/bitcoin/bitcoin/commit/2fb9c1e6681370478e24a19172ed6d78d95d50d3
Not Applicable

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ravencoin:ravencoin:*:*:*:*:*:*:*:*

Версия до 4.3.2.1 (включая)

EPSS

Процентиль: 29%

0.00108

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-mg4p-rw57-c4hp