Lucene search

K
prionPRIOn knowledge basePRION:CVE-2024-23688
HistoryJan 19, 2024 - 10:15 p.m.

Code injection

2024-01-1922:15:00
PRIOn knowledge base
www.prio-n.com
9
consensys discovery
code injection
versions
aes/gcm nonce
exposed session key
nvd

AI Score

7.2

Confidence

Low

EPSS

0.001

Percentile

20.6%

Consensys Discovery versions less than 0.4.5 uses the same AES/GCM nonce for the entire session. which should ideally be unique for every message. The node’s private key isn’t compromised, only the session key generated for specific peer communication is exposed.

AI Score

7.2

Confidence

Low

EPSS

0.001

Percentile

20.6%

Related for PRION:CVE-2024-23688