Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-R33Q-22HV-J29Q
HistoryJun 29, 2021 - 9:14 p.m.

Denial of service in github.com/ethereum/go-ethereum

2021-06-2921:14:07
CWE-400
GitHub Advisory Database
github.com
49

0.002 Low

EPSS

Percentile

53.0%

JSON

Impact

A DoS vulnerability can make a LES server crash via malicious GetProofsV2 request from a connected LES client.

Patches

The vulnerability was patched in https://github.com/ethereum/go-ethereum/pull/21896.

Workarounds

This vulnerability only concerns users explicitly enabling les server; disabling les prevents the exploit.
It can also be patched by manually applying the patch in https://github.com/ethereum/go-ethereum/pull/21896.

For more information

If you have any questions or comments about this advisory:

Related

prion 1
osv 3
cvelist 1
cve 1
veracode 1
prion
prion
Denial of service
2020-12-11 17:15:00
osv
osv
CVE-2020-26264
2020-12-11 17:15:12
Denial of service in github.com/ethereum/go-ethereum
2021-06-29 21:14:07
Nil pointer dereference via malicious RPC message in github.com/ethereum/go-ethereum
2021-04-14 20:04:52
cvelist
cvelist
CVE-2020-26264 LES Server DoS via GetProofsV2
2020-12-11 16:45:24
cve
cve
CVE-2020-26264
2020-12-11 17:15:00
veracode
veracode
Denial Of Service (DoS)
2024-02-06 07:36:59

0.002 Low

EPSS

Percentile

53.0%

JSON
Related for GHSA-R33Q-22HV-J29Q
prion1osv3cvelist1cve1veracode1