Lucene search
+L

4 matches found

OSV
OSV
added 2021/10/26 2:15 p.m.14 views

CVE-2021-41173

Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.9, a vulnerable node is susceptible to crash when processing a maliciously crafted message from a peer. Version v1.10.9 contains patches to the vulnerability. There are no known workarounds aside fro...

5.7CVSS5.6AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/10/26 2:15 p.m.4 views

CVE-2021-41173

Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.9, a vulnerable node is susceptible to crash when processing a maliciously crafted message from a peer. Version v1.10.9 contains patches to the vulnerability. There are no known workarounds aside fro...

5.7CVSS6.2AI score0.01202EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2021/10/26 2:5 p.m.22 views

CVE-2021-41173 DoS via maliciously crafted p2p message

Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.9, a vulnerable node is susceptible to crash when processing a maliciously crafted message from a peer. Version v1.10.9 contains patches to the vulnerability. There are no known workarounds aside fro...

5.7CVSS5.8AI score0.01202EPSS
Exploits0References4
CVE
CVE
added 2021/10/26 2:5 p.m.75 views

CVE-2021-41173

CVE-2021-41173 affects go-ethereum prior to v1.10.9, where processing a malicious snap/1 message could crash a node (DoS). The Red Hat and OSV details corroborate a crash in Go Ethereum’s P2P handling, specifically the GetTrieNodes path in the snap protocol. The root cause involved unsafe handlin...

5.7CVSS5.5AI score0.01202EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder