Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Ledger Live before 2.7.0 does not handle Bitcoin's Replace-By-Fee (RBF). It increases the user's balance with the value of an unconfirmed transaction as soon as it is received (before the transaction is confirmed) and does not decrease the balance when it is canceled. As a result, users are exposed to basic double spending attacks, amplified double spending attacks, and DoS attacks without user consent.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ledger Live 安全漏洞
Vulnerability Description
Ledger SAS Live是法国Ledger SAS公司的一款加密货币钱包产品。 Ledger Live 2.7.0之前版本中存在安全漏洞。攻击者可利用该漏洞实施双重花费或多重花费攻击,或造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A