← Back

Fisco Bcos

fisco-bcos

6 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Fisco Bcos
fisco-bcos
6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-58131
1Fisco Bcos
1Fisco Bcos
Apr 8, 2025
Apr 6, 2025
N/A· v4
3.7 LOW· v3
N/A· v2
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node (that has modified the codebase to allow a large min_seal_time value) joins a blockchai...Show more
FISCO BCOS 3.11.0 has an issue with synchronization of the transaction pool that can, for example, be observed when a malicious node (that has modified the codebase to allow a large min_seal_time value) joins a blockchain network.Show less
CVE-2022-28937
1Fisco Bcos
1Fisco Bcos
Nov 21, 2024
May 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposal with an invalid header, will cause normal nodes to stop producing new blocks and processing new clients' req...Show more
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposal with an invalid header, will cause normal nodes to stop producing new blocks and processing new clients' requests.Show less
CVE-2022-28936
1Fisco Bcos
1Fisco Bcos
Nov 21, 2024
May 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node can trigger an integer overflow and cause a Denial of Service (DoS) via an unusually large viewchange message packet.
CVE-2022-26534
1Fisco Bcos
1Fisco Bcos
Nov 21, 2024
Mar 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via a malicious viewchange packet, will cause normal nodes to change view excessively and stop generating blocks.
CVE-2021-46359
1Fisco Bcos
1Fisco Bcos
Jun 17, 2026
Feb 7, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
FISCO-BCOS release-3.0.0-rc2 contains a denial of service vulnerability. Some transactions may not be committed successfully, and malicious users may use this to achieve double-spending attacks.
CVE-2021-35041
1Fisco Bcos
1Fisco Bcos
Jun 17, 2026
Jun 24, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decode...Show more
The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decoded by the node correctly. As a result, the node may consume the memory sustainably and crash. More details are shown at: https://github.com/FISCO-BCOS/FISCO-BCOS/issues/1951Show less