Lucene search
Veracode Vulnerability DatabaseVERACODE:40938HistoryJun 19, 2023 - 6:41 a.m.
Improper Input Validation
2023-06-1906:41:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
improper input validation
vulnerability
metaprocess.go
invalid transaction
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
35.5%
github.com/multiversx/mx-chain-go is vulnerable to Improper Input Validation. The vulnerability exists due to a lack of invalid transaction validation in metaProcess.go, which allows an attacker to stop notarizing blocks in shard chains.
Related
github
github
mx-chain-go does not treat invalid transaction with wrong username correctly
2023-06-02 19:41:31
cve
cve
CVE-2023-33964
2023-05-31 18:15:09
prion
prion
Cross site scripting
2023-05-31 18:15:00
cvelist
cvelist
osv
osv
mx-chain-go does not treat invalid transaction with wrong username correctly
2023-06-02 19:41:31
CVE-2023-33964
2023-05-31 18:15:09
nvd
nvd
CVE-2023-33964
2023-05-31 18:15:09
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
35.5%
Related for VERACODE:40938