Количество 2
Количество 2
CVE-2024-23688
около 2 лет назад
Consensys Discovery versions less than 0.4.5 uses the same AES/GCM nonce for the entire session. which should ideally be unique for every message. The node's private key isn't compromised, only the session key generated for specific peer communication is exposed.
CVSS3: 5.3
EPSS: Низкий
GHSA-w3hj-wr2q-x83g
почти 5 лет назад
Discovery uses the same AES/GCM Nonce throughout the session
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-23688 Consensys Discovery versions less than 0.4.5 uses the same AES/GCM nonce for the entire session. which should ideally be unique for every message. The node's private key isn't compromised, only the session key generated for specific peer communication is exposed. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| GHSA-w3hj-wr2q-x83g Discovery uses the same AES/GCM Nonce throughout the session | 0% Низкий | почти 5 лет назад |
Уязвимостей на страницу
20