Lucene search

GoogleOSV:CVE-2023-36184

HistorySep 08, 2023 - 2:15 a.m.

CVE-2023-36184

2023-09-0802:15:08

Google

osv.dev

cmysten labs sui

blockchain v1.2.0

stack overflow

openrpc.json

software

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

JSON

CMysten Labs Sui blockchain v1.2.0 was discovered to contain a stack overflow via the component /spec/openrpc.json.

CPENameOperatorVersion
aptos-coreeqsui_v0.33.0_1682187697_ci
aptos-coreeqaptos-cli-v1.0.3
aptos-coreeqsui_v0.20.0_1671593785_ci
aptos-coreeqsui_v0.11.0_1665635578_ci
aptos-coreeqsui_v0.28.0_1678548590_ci
aptos-coreeqsui_v0.17.0_1669066105_ci
aptos-coreeqsui_v0.30.0_1680114768_ci
aptos-coreeqsui_v0.32.0_1681420880_ci
aptos-coreeqsui_v0.9.0_1664185361_ci
aptos-coreeqsui_v0.30.0_1680199481_ci

Name	Operator	Version
aptos-core	eq	sui_v0.33.0_1682187697_ci
aptos-core	eq	aptos-cli-v1.0.3
aptos-core	eq	sui_v0.20.0_1671593785_ci
aptos-core	eq	sui_v0.11.0_1665635578_ci
aptos-core	eq	sui_v0.28.0_1678548590_ci
aptos-core	eq	sui_v0.17.0_1669066105_ci
aptos-core	eq	sui_v0.30.0_1680114768_ci
aptos-core	eq	sui_v0.32.0_1681420880_ci
aptos-core	eq	sui_v0.9.0_1664185361_ci
aptos-core	eq	sui_v0.30.0_1680199481_ci

Rows per page:

1-10 of 11691

References

github.com/aptos-labs/aptos-core/commit/47a0391c612407fe0b1051ef658a29e35d986963

github.com/move-language/move/issues/1059

github.com/MystenLabs/sui/commit/8b681515c0cf435df2a54198a28ab4ef574d202b

medium.com/%40Beosin_com/critical-vulnerability-in-move-vm-can-cause-total-network-shutdown-and-potential-hard-fork-in-sui-49d0d942801c

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

JSON

Related for OSV:CVE-2023-36184