Описание
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node (that has modified the codebase to allow a large min_seal_time value) joins a blockchain network.
Ссылки
- ExploitIssue Tracking
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fisco-bcos:fisco-bcos:3.11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00224
Низкий
4 Medium
CVSS3
3.7 Low
CVSS3
Дефекты
CWE-821
CWE-662
Связанные уязвимости
CVSS3: 4
github
10 месяцев назад
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node (that has modified the codebase to allow a large min_seal_time value) joins a blockchain network.
EPSS
Процентиль: 45%
0.00224
Низкий
4 Medium
CVSS3
3.7 Low
CVSS3
Дефекты
CWE-821
CWE-662