Lucene search
GoogleOSV:GHSA-8M45-2RJM-J347HistoryApr 17, 2024 - 6:21 p.m.
Handling untrusted input can result in a crash, leading to loss of availability / denial of service
2024-04-1718:21:18
Google
osv.dev
5
untrusted input
crash
availability
memory exhaustion
solana/web3.js
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Using particular inputs with @solana/web3.js will result in memory exhaustion (OOM).
If you have a server, client, mobile, or desktop product that accepts untrusted input for use with @solana/web3.js, your application/service may crash, resulting in a loss of availability.
Related
cvelist
cvelist
nvd
nvd
CVE-2024-30253
2024-04-17 15:15:07
vulnrichment
vulnrichment
cve
cve
CVE-2024-30253
2024-04-17 15:15:07
osv
osv
CVE-2024-30253
2024-04-17 15:15:07
veracode
veracode
Denial Of Service
2024-04-18 10:00:37
github
github
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Related for OSV:GHSA-8M45-2RJM-J347