2 matches found
CVE-2022-47547
GossipSub 1.1 (used in Ethereum 2.0) contains a vulnerability where a peer can continuously misbehave by not forwarding topic messages, yet maintain a positive score and avoid pruning. Root cause appears to be the peer scoring/penalty mechanism allowing misbehaving peers to stay in the network. D...
CVE-2020-12821
CVE-2020-12821 affects Gossipsub 1.0 and involves inadequate resistance to invalid message spam, enabling eclipse or Sybil attacks. Descriptions across Red Hat, NVD, CNVD, and related records consistently state that Gossipsub 1.0 can be exploited by sending invalid messages to disrupt/pubsub inte...