HIGH🇵🇱 Wersja polska

CVE-2022-36023

CVSS 7.0v3.1pub. 2022-08-18upd. 2024-11-21

Hyperledger Fabric is an enterprise-grade permissioned distributed ledger framework for developing solutions and applications. If a gateway client application sends a malformed request to a gateway peer it may crash the peer node. Version 2.4.6 checks for the malformed gateway request and returns an error to the gateway client. There are no known workarounds, users must upgrade to version 2.4.6.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
  • Hyperledger Fabric

    APP
    Hyperledger
    < 2.4.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-46132HIGH7.1ten sam produkt

Hyperledger Fabric is an open source permissioned distributed ledger framework. Combining two molecules to one...

CVE-2022-45196HIGH7.5ten sam produkt

Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a c...

CVE-2022-31121HIGH7.5ten sam produkt

Hyperledger Fabric is a permissioned distributed ledger framework. In affected versions if a consensus client ...

CVE-2024-45244MEDIUM5.3ten sam produkt

Hyperledger Fabric through 3.0.0 and 2.5.x through 2.5.9 do not verify that a request has a timestamp within t...

CVE-2024-21669CRITICAL9.9PL ✓ten sam vendor

Hyperledger ACA-Py: pominięcie weryfikacji proof w poświadczeniach JSON-LD