CVE-2024-52912

Опубликовано: 18 нояб. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow (calculating the time offset for newly connecting peers) and an abs64 logic bug.

Ссылки

https://bitcoincore.org/en/2024/07/03/disclose-timestamp-overflow/
Vendor Advisory
https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*

Версия до 0.21.0 (исключая)

EPSS

Процентиль: 36%

0.00152

Низкий

7.5 High

CVSS3

Дефекты

CWE-190

Связанные уязвимости

CVE-2024-52912

CVSS3: 7.5

debian

около 1 года назад

Bitcoin Core before 0.21.0 allows a network split that is resultant fr ...

GHSA-mxcf-88m3-99v7

CVSS3: 7.5

github

около 1 года назад

Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow (calculating the time offset for newly connecting peers) and an abs64 logic bug.

EPSS

Процентиль: 36%

0.00152

Низкий

7.5 High

CVSS3

Дефекты

CWE-190