Fabric Security Vulnerabilities
Hyperledger Fabric is a permissioned distributed ledger framework. In affected versions if a consensus client sends a malformed consensus request to an orderer it may crash the orderer node. A fix has been added in commit 0f1835949 which checks for missing consensus messages and returns an error to...
7.5CVSS
7.4AI Score
0.002EPSS
Hyperledger Fabric is an enterprise-grade permissioned distributed ledger framework for developing solutions and applications. If a gateway client application sends a malformed request to a gateway peer it may crash the peer node. Version 2.4.6 checks for the malformed gateway request and returns a...
7CVSS
5.2AI Score
0.001EPSS
Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a crafted channel tx with the same Channel name. NOTE: the official Fabric with Raft prevents exploitation via a locking mechanism and a check for names that already exist.
7.5CVSS
7.2AI Score
0.001EPSS
Hyperledger Fabric is an open source permissioned distributed ledger framework. Combining two molecules to one another, called "cross-linking" results in a molecule with a chemical formula that is composed of all atoms of the original two molecules. In Fabric, one can take a block of transactions a...
7.1CVSS
6.4AI Score
0.0005EPSS
Hyperledger Fabric through 2.5.9 does not verify that a request has a timestamp within the expected time window.
5.3CVSS
7AI Score
0.0005EPSS