Lucene search

CVE-2024-38359

🗓️ 20 Jun 2024 23:52:15Reported by GitHub_MType

lnd v0.17.0 DoS vulnerability patche

Reporter	Title	Published	Views	Family All 7
OSV	GO-2024-2943 Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service in github.com/lightningnetwork/lnd	1 Jul 202419:59	–	osv
OSV	GHSA-9GXX-58Q6-42P7 Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service	20 Jun 202419:18	–	osv
Cvelist	CVE-2024-38359 Lightning Network Daemon Onion Bomb	20 Jun 202422:16	–	cvelist
Vulnrichment	CVE-2024-38359 Lightning Network Daemon Onion Bomb	20 Jun 202422:16	–	vulnrichment
Veracode	Improper Input Validation	21 Jun 202409:14	–	veracode
Github Security Blog	Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service	20 Jun 202419:18	–	github
NVD	CVE-2024-38359	20 Jun 202423:15	–	nvd

Vulners

Vulnrichment

Node

lightningnetwork lndRange<0.17.0

[
  {
    "vendor": "lightningnetwork",
    "product": "lnd",
    "versions": [
      {
        "version": "< 0.17.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
morehouse	www.morehouse.github.io/lightning/lnd-onion-bomb
delvingbitcoin	www.delvingbitcoin.org/t/dos-disclosure-lnd-onion-bomb/979
github	www.github.com/lightningnetwork/lnd/security/advisories/GHSA-9gxx-58q6-42p7
github	www.github.com/lightningnetwork/lnd/releases/tag/v0.17.0-beta
lightning	www.lightning.network/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jun 2024 23:15Current

6.4Medium risk

Vulners AI Score6.4

CVSS36.5

EPSS0.00045

SSVC

CWE-20