Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistGitHub_MCVELIST:CVE-2024-32985
HistoryMay 09, 2024 - 8:54 p.m.

CVE-2024-32985 Stellar-core's Overlay - security fix for DDoS mitigation

2024-05-0920:54:15
CWE-362
GitHub_M
www.cve.org
cve-2024-32985
stellar-core
ddos mitigation
network crash
code fix mitigation

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Stellar-core is a reference implementation for the peer-to-peer agent that manages the Stellar network. Prior to 20.4.0, core nodes could be randomly crashed due to a race condition with a 3rd party library. The likelihood of affecting the network is low since crashed nodes come back up online right away. Code fix mitigation is part of Stellar-core v20.4.0 release

CNA Affected

[
  {
    "vendor": "stellar",
    "product": "stellar-core",
    "versions": [
      {
        "version": "< 20.4.0",
        "status": "affected"
      }
    ]
  }
]

Related

vulnrichment 1
cve 1
nvd 1
vulnrichment
vulnrichment
CVE-2024-32985 Stellar-core's Overlay - security fix for DDoS mitigation
2024-05-09 20:54:15
cve
cve
CVE-2024-32985
2024-05-14 15:37:20
nvd
nvd
CVE-2024-32985
2024-05-14 15:37:20

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVELIST:CVE-2024-32985
vulnrichment1cve1nvd1