Описание
GossipSub 1.1, as used for Ethereum 2.0, allows a peer to maintain a positive score (and thus not be pruned from the network) even though it continuously misbehaves by never forwarding topic messages.
Ссылки
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:protocol:gossipsub:1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-281
CWE-281
Связанные уязвимости
CVSS3: 5.3
github
около 3 лет назад
GossipSub 1.1, as used for Ethereum 2.0, allows a peer to maintain a positive score (and thus not be pruned from the network) even though it continuously misbehaves by never forwarding topic messages.
EPSS
Процентиль: 33%
0.00129
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-281
CWE-281