Bitcoin Core Security Vulnerabilities and Issues — Bitcoin Core CVE List

Lucene search

BitcoinBitcoin Core

6 matches found

CVE•added 2020/03/12 9:15 p.m.•60 views

CVE-2015-3641

bitcoind and Bitcoin-Qt prior to 0.10.2 allow attackers to cause a denial of service (disabled functionality such as a client application crash) via an "Easy" attack.

7.5CVSS7.3AI score0.00832EPSS

CVE•added 2020/03/12 9:15 p.m.•59 views

CVE-2017-18350

bitcoind and Bitcoin-Qt prior to 0.15.1 have a stack-based buffer overflow if an attacker-controlled SOCKS proxy server is used. This results from an integer signedness error when the proxy server responds with an acknowledgement of an unexpected target domain name.

5.9CVSS5.9AI score0.00497EPSS

CVE•added 2020/03/12 9:15 p.m.•55 views

CVE-2018-20586

bitcoind and Bitcoin-Qt prior to 0.17.1 allow injection of arbitrary data into the debug log via an RPC call.

5.3CVSS5.5AI score0.00353EPSS

CVE•added 2020/09/10 5:15 p.m.•53 views

CVE-2018-17145

Bitcoin Core 0.16.x before 0.16.2 and Bitcoin Knots 0.16.x before 0.16.2 allow remote denial of service via a flood of multiple transaction inv messages with random hashes, aka INVDoS. NOTE: this can also affect other cryptocurrencies, e.g., if they were forked from Bitcoin Core after 2017-11-15.

7.5CVSS7.4AI score0.01133EPSS

CVE•added 2020/09/10 5:15 p.m.•52 views

CVE-2020-14198

Bitcoin Core 0.20.0 allows remote denial of service.

7.5CVSS7.4AI score0.01845EPSS

CVE•added 2020/03/16 8:15 p.m.•50 views

CVE-2017-12842

Bitcoin Core before 0.14 allows an attacker to create an ostensibly valid SPV proof for a payment to a victim who uses an SPV wallet, even if that payment did not actually occur. Completing the attack would cost more than a million dollars, and is relevant mainly only in situations where an autonom...

7.5CVSS7.4AI score0.01927EPSS