Lucene search
K

4 matches found

OSV
OSV
added 2026/05/08 2:55 p.m.3 views

CVE-2026-41583 ZEBRA: Consensus Divergence in Transparent Sighash Hash-Type Handling

ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.1 and prior to zebra-script version 5.0.2, after a refactoring, Zebra failed to validate a consensus rule that restricted the possible values of sighash hash types for V5 transactions which were enabled in the NU5 network...

9.3CVSS5.9AI score0.00278EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.11 views

PT-2026-29168

--- CVE-2026-34377: Consensus Failure via Crafted V5 Authorization Data Summary A logic error in Zebra's transaction verification cache could allow a malicious miner to induce a consensus split. By matching a valid transaction's txid while providing invalid authorization data, a miner could cause...

8.4CVSS5.9AI score0.00255EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2026/03/27 10:19 p.m.8 views

Zebra node crash — V5 transaction hash panic (P2P reachable)

--- Remote Denial of Service via Crafted V5 Transactions Summary A vulnerability in Zebra's transaction processing logic allows a remote, unauthenticated attacker to cause a Zebra node to panic crash. This is triggered by sending a specially crafted V5 transaction that passes initial...

9.2CVSS6AI score0.00725EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2026/03/27 10:19 p.m.4 views

GHSA-QP6F-W4R3-H8WG Zebra node crash — V5 transaction hash panic (P2P reachable)

--- Remote Denial of Service via Crafted V5 Transactions Summary A vulnerability in Zebra's transaction processing logic allows a remote, unauthenticated attacker to cause a Zebra node to panic crash. This is triggered by sending a specially crafted V5 transaction that passes initial...

9.2CVSS6AI score0.00725EPSS
Exploits0References5
Rows per page
Query Builder