CVE-2020-15091

Published: Jul 2, 2020Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

TenderMint from version 0.33.0 and before version 0.33.6 allows block proposers to include signatures for the wrong block. This may happen naturally if you start a network, have it run for some time and restart it (**without changing chainID**). A malicious block proposer (even with a minimal amount of stake) can use this vulnerability to completely halt the network. This issue is fixed in Tendermint 0.33.6 which checks all the signatures are for the block with 2/3+ majority before creating a commit.

Affected (1)

Products: Tendermint: Tendermint

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tendermint Tendermint	From 0.33.0 to 0.33.6

Related CWEs

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (6)

https://github.com/tendermint/tendermint/commit/480b995a31727593f58b361af979054d17d84340

Source: security-advisories@github.com

PatchThird Party Advisory

https://github.com/tendermint/tendermint/issues/4926

Source: security-advisories@github.com

ExploitIssue TrackingThird Party Advisory

https://github.com/tendermint/tendermint/security/advisories/GHSA-6jqj-f58p-mrw3

Source: security-advisories@github.com

ExploitThird Party Advisory

https://github.com/tendermint/tendermint/commit/480b995a31727593f58b361af979054d17d84340

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/tendermint/tendermint/issues/4926

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingThird Party Advisory

https://github.com/tendermint/tendermint/security/advisories/GHSA-6jqj-f58p-mrw3

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.