Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Uncontrolled Resource Consumption in Indy Node
Vulnerability Description
In Indy Node 1.12.2, there is an Uncontrolled Resource Consumption vulnerability. Indy Node has a bug in TAA handling code. The current primary can be crashed with a malformed transaction from a client, which leads to a view change. Repeated rapid view changes have the potential of bringing down the network. This is fixed in version 1.12.3.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Indy Node 资源管理错误漏洞
Vulnerability Description
Indy Node是美国Linux基金会的一款基于indy-plenum(拜占庭容错协议)的分布式Ledger实现。 Indy Node 1.12.2版本中的TAA处理代码存在资源管理错误漏洞。远程攻击者可利用该漏洞可能导致网络瘫痪。
CVSS Information
N/A
Vulnerability Type
N/A