CVE-2018-17145

Published: Sep 10, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Bitcoin Core 0.16.x before 0.16.2 and Bitcoin Knots 0.16.x before 0.16.2 allow remote denial of service via a flood of multiple transaction inv messages with random hashes, aka INVDoS. NOTE: this can also affect other cryptocurrencies, e.g., if they were forked from Bitcoin Core after 2017-11-15.

Affected (24)

Products: Bcoin: Bcoin · Bitcoin: Bitcoin Core · Bitcoinknots: Bitcoin Knots · +4 more

Show all products

Bcoin: Bcoin · Bitcoin: Bitcoin Core · Bitcoinknots: Bitcoin Knots · Btcd Project: Btcd · Decred: Dcrd · Litecoin: Litecoin · Namecoin: Namecoin Core

1 product

1 product

1 product

1 product

1 product

1 product

1 product

Configuration A

24 vulnerable

Vulnerable Software	Affected Versions
Bcoin Bcoin	Before 1.0.2
Bitcoin Bitcoin Core	From 0.16.0 to 0.16.2
Bitcoinknots Bitcoin Knots	From 0.16.0 to 0.16.2
Btcd Project Btcd	Version 0.10.0 beta
Btcd Project Btcd	Version 0.11.0 beta
Btcd Project Btcd	Version 0.11.1 beta
Btcd Project Btcd	Version 0.12.0 beta
Btcd Project Btcd	Version 0.13.0 beta2
Btcd Project Btcd	Version 0.13.0 beta
Btcd Project Btcd	Version 0.20.0 beta
Btcd Project Btcd	Version 0.20.1 beta
Btcd Project Btcd	Version 0.3.0 alpha
Btcd Project Btcd	Version 0.3.1 alpha
Btcd Project Btcd	Version 0.3.2 alpha
Btcd Project Btcd	Version 0.3.3 alpha
Btcd Project Btcd	Version 0.4.0 alpha
Btcd Project Btcd	Version 0.5.0 alpha
Btcd Project Btcd	Version 0.6.0 alpha
Btcd Project Btcd	Version 0.7.0 alpha
Btcd Project Btcd	Version 0.8.0 beta
Btcd Project Btcd	Version 0.9.0 beta
Decred Dcrd	Before 1.5.2
Litecoin Litecoin	From 0.16.0 to 0.16.2
Namecoin Namecoin Core	From 0.16.0 to 0.16.2