CVE-2023-39910: Libbitcoin Explorer 安全特征问题漏洞

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2023-39910 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

The cryptocurrency wallet entropy seeding mechanism used in Libbitcoin Explorer 3.0.0 through 3.6.0 is weak, aka the Milk Sad issue. The use of an mt19937 Mersenne Twister PRNG restricts the internal entropy to 32 bits regardless of settings. This allows remote attackers to recover any wallet private keys generated from "bx seed" entropy output and steal funds. (Affected users need to move funds to a secure new cryptocurrency wallet.) NOTE: the vendor's position is that there was sufficient documentation advising against "bx seed" but others disagree. NOTE: this was exploited in the wild in June and July 2023.

来源: 美国国家漏洞数据库 NVD

CVSS Information

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

Libbitcoin Explorer 安全特征问题漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

Libbitcoin Explorer是Libbitcoin开源的一个比特币命令行工具。 Libbitcoin Explorer 3.0.0至3.6.0版本存在安全漏洞，该漏洞源于货币加密技术存在安全问题导致资金被窃取。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商	产品	影响版本	CPE	订阅
-	n/a	n/a	-

二、漏洞 CVE-2023-39910 的公开POC

#	POC 描述	源链接	神龙链接
1	This tool generates BIP-39 mnemonic phrases derived from Unix timestamps, exploring the 'Milk Sad' vulnerability's implications (CVE-2023-39910)	https://github.com/z1ph1us/MilkSad-Mnemonic-Generator	POC详情
2	🔐 Advanced cryptanalytic framework for Bitcoin wallet vulnerability research \| CVE-2023-39910 (Milk Sad) exploitation \| Private key recovery for lost BTC wallets \| Python-based security research tool \| Educational & forensic analysis	https://github.com/zoeir/BTCDetect-Scientific-Methodology	POC详情
3	🔒 Analyze the CVE-2023-39910 vulnerability in Libbitcoin Explorer to understand its impact on Bitcoin wallet security and protect your assets.	https://github.com/Hitplus/RingSide-Replay-Attack	POC详情
4	🔍 Analyze and mitigate the CVE-2023-39910 vulnerability in Libbitcoin Explorer to protect Bitcoin wallet keys from being compromised.	https://github.com/Hitplus/hitplus.github.io	POC详情
5	RAMnesia Attack: A Scientific Investigation of WireTap Threats to Bitcoin Infrastructure, Hardware Vulnerabilities (CVE-2025-6202, CVE-2023-39910), and Cryptanalytic Methods for ECDSA Key Recovery	https://github.com/demining/RAMnesia-Attack	POC详情

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2023-39910 的情报信息

Please 登录 to view more intelligence information

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-39910

暂无评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2023-39910 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2023-39910 的公开POC

三、漏洞 CVE-2023-39910 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2023-39910

发表评论

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

一、 漏洞 CVE-2023-39910 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2023-39910 的公开POC

三、漏洞 CVE-2023-39910 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2023-39910

发表评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2023-39910 基础信息