Lucene search

GitHub Advisory DatabaseGHSA-V9JH-J8PX-98VQ

HistoryOct 18, 2023 - 6:30 a.m.

go-ethereum vulnerable to denial of service via crafted GraphQL query

2023-10-1806:30:30

CWE-400

GitHub Advisory Database

github.com

geth

go-ethereum

vulnerability

graphql

denial of service

memory consumption

daemon hang

remote attackers

software

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

36.2%

JSON

Geth (aka go-ethereum) through 1.13.4, when --http --graphql is used, allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a crafted GraphQL query.

NOTE: the vendor’s position is that the "graphql endpoint [is not] designed to withstand attacks by hostile clients, nor handle huge amounts of clients/traffic.

Affected configurations

Vulners

Node

github.com\/ethereum\/goethereumRange≤1.13.4

CPENameOperatorVersion
github.com/ethereum/go-ethereumle1.13.4

CPE	Name	Operator	Version
	github.com/ethereum/go-ethereum	le	1.13.4

References

blog.mevsec.com/posts/geth-dos-with-graphql/

geth.ethereum.org/docs/fundamentals/security

github.com/advisories/GHSA-v9jh-j8px-98vq

nvd.nist.gov/vuln/detail/CVE-2023-42319

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

36.2%

JSON

Related for GHSA-V9JH-J8PX-98VQ