CVE-2021-45699

Опубликовано: 27 дек. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

An issue was discovered in the ckb crate before 0.40.0 for Rust. Remote attackers may be able to conduct a 51% attack against the Nervos CKB blockchain by triggering an inability to allocate memory for the misbehavior HashMap.

Ссылки

https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/ckb/RUSTSEC-2021-0108.md
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2021-0108.html
Third Party Advisory
https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/ckb/RUSTSEC-2021-0108.md
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2021-0108.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nervos:ckb:*:*:*:*:*:rust:*:*

Версия до 0.40.0 (исключая)

EPSS

Процентиль: 67%

0.0055

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-770

Связанные уязвимости

GHSA-2969-8hh9-57jc