67 matches found
PT-2018-5654 · Ethereum · Cpp-Ethereum
Name of the Vulnerable Software and Affected Versions: CPP-Ethereum affected versions not specified Description: An exploitable information leak/denial of service issue exists in the libevm Ethereum Virtual Machine create2 opcode handler. A specially crafted smart contract code can cause an...
PT-2018-5359 · Ethereum · Cpp-Ethereum
Name of the Vulnerable Software and Affected Versions: cpp-ethereum version affected versions not specified Description: An issue exists in the miner stop API endpoint of cpp-ethereum's JSON-RPC, where improper authorization can be exploited. An attacker can send JSON data to trigger this issue...
PT-2018-5360 · Ethereum · Cpp-Ethereum Json-Rpc
Name of the Vulnerable Software and Affected Versions: CPP-Ethereum JSON-RPC affected versions not specified Description: An exploitable unhandled exception issue exists in multiple APIs of CPP-Ethereum JSON-RPC, where specially crafted JSON requests can cause an unhandled exception, resulting in...
PT-2018-5354 · Ethereum · Cpp-Ethereum
Name of the Vulnerable Software and Affected Versions: cpp-ethereum affected versions not specified Description: An improper authorization issue exists in the admin nodeInfo API endpoint of cpp-ethereum's JSON-RPC. This allows a JSON request to access restricted functionality, resulting in...
PT-2018-5358 · Ethereum · Cpp-Ethereum
Name of the Vulnerable Software and Affected Versions: cpp-ethereum version affected versions not specified Description: An improper authorization issue exists in the miner start API endpoint of cpp-ethereum's JSON-RPC. This allows a JSON request to access restricted functionality, resulting in...
PT-2018-5357 · Ethereum · Cpp-Ethereum
Name of the Vulnerable Software and Affected Versions: cpp-ethereum affected versions not specified Description: An improper authorization issue exists in the miner setGasPrice API of cpp-ethereum's JSON-RPC. This allows a JSON request to access restricted functionality, resulting in authorizatio...
CPP-Ethereum JSON-RPC Incorrect Authorization Vulnerability
CPP-Ethereum is a C++ client for Ethereum Application Programming Platform.JSON-RPC is one of the remote invocation services using JSON as the protocol. An incorrect authorization vulnerability exists in the adminnodeInfo API for JSON-RPC in CPP-Ethereum commit version...
CPP-Ethereum JSON-RPC Denial Of Service Vulnerabilities(CVE-2017-12119)
Summary An exploitable unhandled exception vulnerability exists in multiple APIs of CPP-Ethereum's JSON-RPC. Specially crafted JSON requests can cause a unhandled exception resulting in denial of service. An attacker can send malicious JSON to trigger this vulnerability. Tested Versions Ethereum...
CPP-Ethereum JSON-RPC admin_nodeInfo improper authorization Vulnerability(CVE-2017-12113)
Summary An exploitable improper authorization vulnerability exists in adminnodeInfo API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to...
CPP-Ethereum JSON-RPC miner_start improper authorization Vulnerability(CVE-2017-12117)
Summary An exploitable improper authorization vulnerability exists in minerstart API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigg...
CPP-Ethereum JSON-RPC admin_peers improper authorization Vulnerability(CVE-2017-12114)
Summary An exploitable improper authorization vulnerability exists in adminpeers API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigg...
CPP-Ethereum JSON-RPC admin_addPeer Authorization Bypass Vulnerability(CVE-2017-12112)
Summary An exploitable improper authorization vulnerability exists in adminaddPeer API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to...
CPP-Ethereum libevm Information Disclosure Vulnerability
CPP-Ethereum is a C++ client for Ethereum Application Programming Platform. libevm is one of the Ethereum virtual machine libraries. An information disclosure vulnerability exists in create2 of libevm in CPP-Ethereum commit version 4e1015743b95821849d001618a7ce82c7c073768. An attacker could explo...
CPP-Ethereum JSON-RPC Denial of Service Vulnerability
CPP-Ethereum is a C++ client for Ethereum Application Programming Platform.JSON-RPC is one of the remote invocation services using JSON as the protocol.APIs are the interfaces. A denial of service vulnerability exists in the APIs for JSON-RPC in CPP-Ethereum commit version...
CPP-Ethereum libevm create2 Information Leak Vulnerability(CVE-2017-14457)
Summary An exploitable information leak / denial of service vulnerability exists in the libevm Ethereum Virtual Machine create2 opcode handler of CPP-Ethereum. A specially crafted smart contract code can cause an out-of-bounds read leading to memory disclosure or denial of service. An attacker ca...
CPP-Ethereum JSON-RPC miner_setGasPrice improper authorization Vulnerability(CVE-2017-12116)
Summary An exploitable improper authorization vulnerability exists in minersetGasPrice API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to...
CPP-Ethereum JSON-RPC Incorrect Authorization Vulnerability (CNVD-2018-02798)
CPP-Ethereum is a C++ client for Ethereum Application Programming Platform.JSON-RPC is one of the remote invocation services using JSON as the protocol. An incorrect authorization vulnerability exists in the minersetGasPrice API for JSON-RPC in the CPP-Ethereum commit...
CPP-Ethereum JSON-RPC miner_setEtherbase improper authorization Vulnerability(CVE-2017-12115)
Summary An exploitable improper authorization vulnerability exists in minersetEtherbase API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON t...
CPP-Ethereum JSON-RPC miner_stop improper authorization Vulnerability(CVE-2017-12118)
Summary An exploitable improper authorization vulnerability exists in minerstop API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigge...
CPP-Ethereum JSON-RPC miner_stop improper authorization Vulnerability
Summary An exploitable improper authorization vulnerability exists in minerstop API of cpp-ethereum’s JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to trigge...