67 matches found
EUVD-2017-3702
Malware in sbrugna...
EUVD-2017-3701
Malware in sbrugna...
EUVD-2017-3698
Malware in sbrugna...
EUVD-2017-3699
Malware in sbrugna...
EUVD-2017-3697
Malware in sbrugna...
EUVD-2017-3703
Malware in sbrugna...
EUVD-2017-3700
Malware in sbrugna...
EUVD-2017-3696
Malware in sbrugna...
CVE-2017-14451
An exploitable out-of-bounds read vulnerability exists in libevm Ethereum Virtual Machine of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read which can subsequently trigger an out-of-bounds write resulting in remote code execution. An attacker can create/send...
CVE-2017-14451
An exploitable out-of-bounds read vulnerability exists in libevm Ethereum Virtual Machine of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read which can subsequently trigger an out-of-bounds write resulting in remote code execution. An attacker can create/send...
CVE-2017-14451
CVE-2017-14451 is an exploitable out-of-bounds read in libevm (CPP‑Ethereum). The root cause, per TALOS/Red Hat/NVD details, is the pow2N function returning exp[_n] without bounds checks, with exp defined as size 6. The _type parameter (0–255) can drive laneCount/laneWidth to values beyond the ar...
Logic Flaw Vulnerability in CPP-Ethereum JSON-RPC
CPP-Ethereum is a C++ client for Ethereum Application Programming Platform.JSON-RPC is one of the remote invocation services using JSON as the protocol. A security vulnerability exists in the minerstart API for JSON-RPC in CPP-Ethereum commit version 4e1015743b95821849d001618a7ce82c7c073768. An...
CVE-2017-12113
An exploitable improper authorization vulnerability exists in adminnodeInfo API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigger th...
CVE-2017-12119
An exploitable unhandled exception vulnerability exists in multiple APIs of CPP-Ethereum JSON-RPC. Specially crafted JSON requests can cause an unhandled exception resulting in denial of service. An attacker can send malicious JSON to trigger this vulnerability...
Out-of-bounds
An exploitable information leak/denial of service vulnerability exists in the libevm Ethereum Virtual Machine create2 opcode handler of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read leading to memory disclosure or denial of service. An attacker can...
Authorization
An exploitable improper authorization vulnerability exists in minerstop API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. An attacker can send JSON to trigger this vulnerability...
CVE-2017-14457
An exploitable information leak/denial of service vulnerability exists in the libevm Ethereum Virtual Machine create2 opcode handler of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read leading to memory disclosure or denial of service. An attacker can...
CVE-2017-12118
An exploitable improper authorization vulnerability exists in minerstop API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. An attacker can send JSON to trigger this vulnerability...
CVE-2017-14457
The CVE-2017-14457 issue impacts CPP-Ethereum’s libevm create2 opcode handler. A crafted contract can set an extremely large initSize passed to the bytesConstRef used to compute the create2 hash, enabling an out-of-bounds read that can cause memory disclosure or a denial of service. Talos and CVE...
CVE-2017-12116
The CVE-2017-12116 entry concerns cpp-ethereum’s JSON-RPC API miner_setGasPrice. The vulnerability stems from improper authorization checks in the miner_setGasPrice API, allowing a remote attacker to access restricted functionality without credentials. Publicly reported impact indicates possible ...