CVE-2018-17145 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 77%

Vendor	Product	Version
bcoin	bcoin	𝑥 < 1.0.2
bitcoin	bitcoin_core	0.16.0 ≤ 𝑥 < 0.16.2
bitcoinknots	bitcoin_knots	0.16.0 ≤ 𝑥 < 0.16.2
btcd_project	btcd	0.3.0:alpha
btcd_project	btcd	0.3.1:alpha
btcd_project	btcd	0.3.2:alpha
btcd_project	btcd	0.3.3:alpha
btcd_project	btcd	0.4.0:alpha
btcd_project	btcd	0.5.0:alpha
btcd_project	btcd	0.6.0:alpha
btcd_project	btcd	0.7.0:alpha
btcd_project	btcd	0.8.0:beta
btcd_project	btcd	0.9.0:beta
btcd_project	btcd	0.10.0:beta
btcd_project	btcd	0.11.0:beta
btcd_project	btcd	0.11.1:beta
btcd_project	btcd	0.12.0:beta
btcd_project	btcd	0.13.0:beta
btcd_project	btcd	0.13.0:beta2
btcd_project	btcd	0.20.0:beta
btcd_project	btcd	0.20.1:beta
decred	dcrd	𝑥 < 1.5.2
litecoin	litecoin	0.16.0 ≤ 𝑥 < 0.16.2
namecoin	namecoin_core	0.16.0 ≤ 𝑥 < 0.16.2

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-400 - Uncontrolled Resource Consumption
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References

https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-17145

https://github.com/bitcoin/bitcoin/blob/v0.16.2/doc/release-notes.md

https://invdos.net

https://invdos.net/paper/CVE-2018-17145.pdf

https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-17145

https://github.com/bitcoin/bitcoin/blob/v0.16.2/doc/release-notes.md

https://invdos.net

https://invdos.net/paper/CVE-2018-17145.pdf