HIGH🇬🇧 English

CVE-2022-36023

CVSS 7.0v3.1pub. 2022-08-18upd. 2024-11-21

Hyperledger Fabric is an enterprise-grade permissioned distributed ledger framework for developing solutions and applications. If a gateway client application sends a malformed request to a gateway peer it may crash the peer node. Version 2.4.6 checks for the malformed gateway request and returns an error to the gateway client. There are no known workarounds, users must upgrade to version 2.4.6.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
  • Hyperledger Fabric

    APP
    Hyperledger
    < 2.4.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-46132HIGH7.1ten sam produkt

Hyperledger Fabric is an open source permissioned distributed ledger framework. Combining two molecules to one...

CVE-2022-45196HIGH7.5ten sam produkt

Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a c...

CVE-2022-31121HIGH7.5ten sam produkt

Hyperledger Fabric is a permissioned distributed ledger framework. In affected versions if a consensus client ...

CVE-2024-45244MEDIUM5.3ten sam produkt

Hyperledger Fabric through 3.0.0 and 2.5.x through 2.5.9 do not verify that a request has a timestamp within t...

CVE-2024-21669CRITICAL9.9PL ✓ten sam vendor

Hyperledger ACA-Py: pominięcie weryfikacji proof w poświadczeniach JSON-LD

CVE-2022-36023 — HIGH 7.0 | CVEbaza.pl