Количество 3
Количество 3
CVE-2024-38359
The Lightning Network Daemon (lnd) - is a complete implementation of a Lightning Network node. A parsing vulnerability in lnd's onion processing logic and lead to a DoS vector due to excessive memory allocation. The issue was patched in lnd v0.17.0. Users should update to a version > v0.17.0 to be protected. Users unable to upgrade may set the `--rejecthtlc` CLI flag and also disable forwarding on channels via the `UpdateChanPolicyCommand`, or disable listening on a public network interface via the `--nolisten` flag as a mitigation.
CVE-2024-38359
The Lightning Network Daemon (lnd) - is a complete implementation of a ...
GHSA-9gxx-58q6-42p7
Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-38359 The Lightning Network Daemon (lnd) - is a complete implementation of a Lightning Network node. A parsing vulnerability in lnd's onion processing logic and lead to a DoS vector due to excessive memory allocation. The issue was patched in lnd v0.17.0. Users should update to a version > v0.17.0 to be protected. Users unable to upgrade may set the `--rejecthtlc` CLI flag and also disable forwarding on channels via the `UpdateChanPolicyCommand`, or disable listening on a public network interface via the `--nolisten` flag as a mitigation. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-38359 The Lightning Network Daemon (lnd) - is a complete implementation of a ... | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| GHSA-9gxx-58q6-42p7 Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу