32 matches found
GHSA-HC36-C89J-5F4J bsv-sdk and bsv-wallet persist unverified certifier signatures in acquire_certificate (direct and issuance paths)
Unverified certifier signatures persisted by acquirecertificate Affected packages Both bsv-sdk and bsv-wallet are published from the sgbett/bsv-ruby-sdk repository. The vulnerable code lives in lib/bsv/walletinterface/walletclient.rb, which is physically shipped inside both gems the...
bsv-sdk and bsv-wallet persist unverified certifier signatures in acquire_certificate (direct and issuance paths)
Unverified certifier signatures persisted by acquirecertificate Affected packages Both bsv-sdk and bsv-wallet are published from the sgbett/bsv-ruby-sdk repository. The vulnerable code lives in lib/bsv/walletinterface/walletclient.rb, which is physically shipped inside both gems the...
CVE-2026-40069
BSV Ruby SDK is the Ruby SDK for the BSV blockchain. From 0.1.0 to before 0.8.2, BSV::Network::ARC's failure detection only recognises REJECTED and DOUBLESPENDATTEMPTED. ARC responses with txStatus values of INVALID, MALFORMED, MINEDINSTALEBLOCK, or any ORPHAN-containing extraInfo / txStatus are...
BSV Ruby SDK 代码问题漏洞
BSV Ruby SDK is a Ruby development toolkit developed by Simon Bettison for BSV blockchain. Versions of the BSV Ruby SDK from 0.1.0 to 0.8.2 contained code vulnerabilities. These vulnerabilities stemmed from incomplete failure detection logic, which could allow applications to accept transactions...
bsv-sdk and bsv-wallet persist unverified certifier signatures in acquire_certificate (direct and issuance paths)
Unverified certifier signatures persisted by acquirecertificate Affected packages Both bsv-sdk and bsv-wallet are published from the sgbett/bsv-ruby-sdk repository. The vulnerable code lives in lib/bsv/walletinterface/walletclient.rb, which is physically shipped inside both gems the...
BSV Ruby SDK 数据伪造问题漏洞
BSV Ruby SDK is a Ruby development toolkit developed by Simon Bettison for BSV blockchain. Versions of the BSV Ruby SDK from 0.3.1 to 0.8.2 had a data manipulation vulnerability. This vulnerability stemmed from the lack of signature verification when storing certificate records, which could allow...
BSV SDK 安全漏洞
The BSV SDK is an open-source developer toolkit for BSV Blockchain. Versions of the BSV SDK prior to 2.0.0 contained security vulnerabilities. These vulnerabilities stemmed from errors in the signature data preparation process within the BRC-104 authentication mechanism, which could lead to...
Improper Following of Specification by Caller
Overview @bsv/sdk is a BSV Blockchain Software Development Kit Affected versions of this package are vulnerable to Improper Following of Specification by Caller in the Peer class, used by the processInitialRequest and processInitialResponse methods. An attacker can cause a signature to be...
CVE-2018-1000891
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving messages with invalid checksums...
EUVD-2018-2066
Malware in sbrugna...
EUVD-2018-2068
Malware in sbrugna...
EUVD-2018-2067
Malware in sbrugna...
CVE-2018-1000893
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when deserializing transactions...
CVE-2018-1000892
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages...
SUSE CVE-2018-1000891
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving messages with invalid checksums...
SUSE CVE-2018-1000892
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages...
SUSE CVE-2018-1000893
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when deserializing transactions...
CVE-2018-1000893
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when deserializing transactions...
CVE-2018-1000893
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when deserializing transactions...
CVE-2018-1000892
Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages...