Lucene search
GoogleOSV:GO-2024-2819HistoryMay 08, 2024 - 11:23 p.m.
Denial of Service in github.com/ethereum/go-ethereum
2024-05-0823:23:56
Google
osv.dev
9
denial of service
github.com
ethereum
memory consumption
software vulnerability
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.1%
A vulnerable node can be made to consume very large amounts of memory when handling specially crafted p2p messages sent from an attacker node. This can result in a denial of service as the node runs out of memory.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/ethereum/go-ethereum | lt | 1.13.15 |
Related
vulnrichment
vulnrichment
CVE-2024-32972 go-ethereum denial of service via malicious p2p message
2024-05-06 14:26:19
osv
osv
go-ethereum vulnerable to DoS via malicious p2p message
2024-05-06 14:20:40
cvelist
cvelist
CVE-2024-32972 go-ethereum denial of service via malicious p2p message
2024-05-06 14:26:19
veracode
veracode
Resource Exhaustion
2024-05-07 19:26:26
cve
cve
CVE-2024-32972
2024-05-06 15:15:23
nvd
nvd
CVE-2024-32972
2024-05-06 15:15:23
github
github
go-ethereum vulnerable to DoS via malicious p2p message
2024-05-06 14:20:40
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for OSV:GO-2024-2819