CRITICAL🇵🇱 Wersja polska

CVE-2018-1000618

CVSS 9.8v3.0pub. 2018-07-09upd. 2024-11-21

EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_serializer that can result in attack eos network node. This attack appear to be exploitable via network request. This vulnerability appears to have been fixed in after commit cf7209e703e6d3f7a5413e0cb1fe88a4d8e4b38d .

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Eosio Project Eos

    APP
    Eosio Project
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-26300HIGH7.5ten sam produkt

EOS v2.1.0 was discovered to contain a heap-buffer-overflow via the function txn_test_gen_plugin.