Lucene search

[email protected]NVD:CVE-2021-37491

HistoryFeb 07, 2023 - 2:15 p.m.

CVE-2021-37491

2023-02-0714:15:08

[email protected]

web.nvd.nist.gov

dogecoin core

information exposure

vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.1%

JSON

An issue discovered in src/wallet/wallet.cpp in Dogecoin Project Dogecoin Core 1.14.3 and earlier allows attackers to view sensitive information via CWallet::CreateTransaction() function.

Affected configurations

NVD

Node

dogecoindogecoinRange≤1.14.3

References

dogecoin.com

github.com/bitcoin/bitcoin/commit/2fb9c1e6681370478e24a19172ed6d78d95d50d3

github.com/dogecoin/dogecoin/blob/master/src/wallet/wallet.cpp#L2628-L2640

github.com/dogecoin/dogecoin/issues/2279

github.com/VPRLab/BlkVulnReport/blob/main/NDSS23_BlockScope.pdf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.1%

JSON

Related for NVD:CVE-2021-37491

prion1 cve1 debiancve1 cvelist1 osv1