Описание
go-ethereum is the official Go implementation of the Ethereum protocol. In affected versions a consensus-vulnerability in go-ethereum (Geth) could cause a chain split, where vulnerable versions refuse to accept the canonical chain. Further details about the vulnerability will be disclosed at a later date. A patch is included in the upcoming v1.10.8 release. No workaround are available.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
EPSS
6.5 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
go-ethereum is the official Go implementation of the Ethereum protocol ...
Ethereum Contains Consensus Flaw During Block Processing
Уязвимость клиента Geth библиотеки протокола Ethereum языка программирования GO Go Ethereum, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2