3 matches found
CVE-2022-36111
immudb is a database with built-in cryptographic proof and verification. In versions prior to 1.4.1, a malicious immudb server can provide a falsified proof that will be accepted by the client SDK signing a falsified transaction replacing the genuine one. This situation can not be triggered by a...
CVE-2022-36111
CVE-2022-36111 affects immudb client SDKs, not the server. In versions prior to 1.4.1, a malicious immudb server can provide a falsified proof that the client accepts, signing a falsified transaction and replacing the genuine one. The attacker must prompt the client to perform a specific sequence...
CVE-2022-36111 immundb has insufficient verification of data authenticity
immudb is a database with built-in cryptographic proof and verification. In versions prior to 1.4.1, a malicious immudb server can provide a falsified proof that will be accepted by the client SDK signing a falsified transaction replacing the genuine one. This situation can not be triggered by a...