17 matches found
EUVD-2021-26729
Malware in sbrugna...
EUVD-2016-1723
Malware in sbrugna...
EUVD-2017-4379
Malware in sbrugna...
EUVD-2020-1115
Malware in sbrugna...
CVE-2024-52917
Bitcoin Core before 22.0 has a miniupnp infinite loop in which it allocates memory on the basis of random data received over the network, e.g., large M-SEARCH replies from a fake UPnP device...
CVE-2024-52916
Bitcoin Core before 0.15.0 allows a denial of service OOM kill of a daemon process via a flood of minimum difficulty headers...
CVE-2024-52912
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow calculating the time offset for newly connecting peers and an abs64 logic bug...
CVE-2019-15947
In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it may dump a core file. If a user were to mishandle a core file, an attacker can reconstruct the user's wallet.dat file, including their private keys, via a grep "6231 0500" command...
CVE-2019-25220
Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service daemon crash via a flood of low-difficulty header chains aka a "Chain Width Expansion" attack because a node does not first verify that a presented chain has enough work before committing to store it...
CVE-2024-52922
In Bitcoin Core before 25.1, an attacker can cause a node to not download the latest block, because there can be minutes of delay when an announcing peer stalls instead of complying with the peer-to-peer protocol specification...
CVE-2024-52915
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service memory consumption via a crafted INV message...
CVE-2024-52917
Bitcoin Core before 22.0 has a miniupnp infinite loop in which it allocates memory on the basis of random data received over the network, e.g., large M-SEARCH replies from a fake UPnP device...
CVE-2024-52912
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow calculating the time offset for newly connecting peers and an abs64 logic bug...
PT-2024-35487
Name of the Vulnerable Software and Affected Versions Bitcoin Core versions prior to 22.0 Bitcoin Core versions 27.x Description The issue is caused by an integer overflow in CAddrMan's nIdCount via a flood of addr messages, leading to an assertion failure and daemon exit. This can be exploited t...
PT-2024-26378
Name of the Vulnerable Software and Affected Versions Bitcoin Core versions prior to 25.0 Description A high-severity software bug in Bitcoin Core allows remote attackers to cause a denial of service by including transactions in a blocktxn message that are not committed to in a block's merkle roo...
CVE-2023-50428
In Bitcoin Core through 26.0 and Bitcoin Knots before 25.1.knots20231115, datacarrier size limits can be bypassed by obfuscating data as code e.g., with OPFALSE OPIF, as exploited in the wild by Inscriptions in 2022 and 2023. NOTE: although this is a vulnerability from the perspective of the...
Unspecified Vulnerability in Bitcoin Core (CNVD-2021-38774)
Bitcoin Core is an open source client for verifying the validity of blockchain transactions. A security vulnerability exists in Bitcoin Core that allows a remote attacker to exploit the vulnerability to bypass certain security restrictions...