905964 matches found
MINI-WM45-H36Q-PQRJ
Bulletin has no description...
MINI-3G72-J5HH-656J
Bulletin has no description...
GHSA-C8W6-X74F-VMG3 zebrad vulnerable to full node denial of service via crafted Sapling receiver in z_listunifiedreceivers
Am I affected You are affected if: 1. You run zebrad up to and including v4.4.1. 2. Your zebrad.toml sets rpc.listenaddr to a TCP address RPC server is enabled. 3. An attacker can authenticate to the RPC endpoint. With the default enablecookieauth = true, this requires the attacker to read the...
MINI-JRHC-FMQ7-8RHM
Bulletin has no description...
GHSA-F9FF-5X35-7GFW Grackle: Fail-open authorization in the MCP tool layer lets scoped agents perform cross-task and cross-session mutations (IDOR)
Summary Authorization for scoped agent MCP callers is enforced inline, per tool, and is applied inconsistently — several mutating tools silently omit the ancestry/workspace check that their siblings perform. Because the MCP server authenticates all outbound gRPC with the full server API key and t...
GHSA-443G-GWGP-49X4 zebrad vulnerable to getblocks/getheaders locator CPU amplification via uncapped vector length
Am I affected You are affected if: 1. You run zebrad up to and including v4.4.1. 2. Your node accepts inbound P2P connections. Summary The readgetblocks and readgetheaders codec paths accepted block locator vectors up to approximately 65,535 entries the generic TrustedPreallocate ceiling derived...
MINI-6JWF-CC6J-GMPJ
Bulletin has no description...
MINI-43JF-4C7G-85H5
Bulletin has no description...
MINI-X7R6-5WHH-G5MJ
Bulletin has no description...
MINI-MWJW-JP43-4FQ4
Bulletin has no description...
MINI-877Q-M6XH-6H4P
Bulletin has no description...
MINI-966C-36WJ-V9XR
Bulletin has no description...
GHSA-QV2R-V3MX-F4PF zebrad has full node denial of service via non-ASCII LongPollId in getblocktemplate
Am I affected You are affected if: 1. You run zebrad up to and including v4.4.1. 2. Your zebrad.toml sets rpc.listenaddr to a TCP address RPC server is enabled. 3. An attacker can authenticate to the RPC endpoint. With the default enablecookieauth = true, this requires the attacker to read the...
MINI-R8QF-GG2V-J7JC
Bulletin has no description...
MINI-HJ27-VWH8-3GJJ
Bulletin has no description...
MINI-6FMH-4JMF-4PVJ
Bulletin has no description...
MINI-XGJH-VX4F-288G
Bulletin has no description...
MINI-67XJ-QWGR-J338
Bulletin has no description...
MINI-W592-2WFJ-PPCQ
Bulletin has no description...
MINI-X9CQ-3QC8-PC8C
Bulletin has no description...
MINI-X9H4-XWHM-98RJ
Bulletin has no description...
MINI-546Q-564W-XHXV
Bulletin has no description...
MINI-5CHX-X6V3-JX83
Bulletin has no description...
MINI-FJRQ-9V6X-G77M
Bulletin has no description...
MINI-C8HP-W2P3-PPCG
Bulletin has no description...
MINI-WR8R-Q2MM-WHR8
Bulletin has no description...
MINI-VPP7-6FJQ-88WP
Bulletin has no description...
MINI-4HJM-R75H-43W8
Bulletin has no description...
MINI-JVPW-H8MF-7C6P
Bulletin has no description...
MINI-CGRV-PFMX-27VX
Bulletin has no description...
MINI-4GGX-9FQW-8P2X
Bulletin has no description...
MINI-RRQ4-6V4H-4RQ9
Bulletin has no description...
MINI-6F28-M59G-77Q8
Bulletin has no description...
MINI-X8MX-QFFF-GCJC
Bulletin has no description...
MINI-JH9H-3JGC-P75C
Bulletin has no description...
MINI-9CQM-R9JM-FGM6
Bulletin has no description...
MINI-2J35-M87X-WRQG
Bulletin has no description...
MINI-PM52-5CRC-M84Q
Bulletin has no description...
MINI-MPXQ-5F36-GCCF
Bulletin has no description...
MINI-FJRW-PF76-547W
Bulletin has no description...
MINI-M7VC-X936-JFH8
Bulletin has no description...
MINI-F9PJ-CJHG-V2WM
Bulletin has no description...
MINI-JHC3-GCGR-6VQ4
Bulletin has no description...
MINI-GMR7-QG79-3R89
Bulletin has no description...
MINI-Q8MH-RXV5-RP93
Bulletin has no description...
MINI-59Q5-M3JF-CHW3
Bulletin has no description...
MINI-H73J-7HG9-7CM3
Bulletin has no description...
MINI-49VH-475W-26J2
Bulletin has no description...
MINI-6P2V-GW8M-JG72
Bulletin has no description...
MINI-5P7Q-369G-7VX4
Bulletin has no description...