Lucene search
Veracode Vulnerability DatabaseVERACODE:36299HistoryJul 08, 2022 - 7:03 a.m.
Denial Of Service (DoS)
2022-07-0807:03:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
denial of service
hyperledger fabric
vulnerability
remote attacker
consensus request
orderer node
EPSS
0.002
Percentile
58.7%
github.com/hyperledger/fabric is vulnerable to denial of service (DoS) attacks. A remote attacker is able to cause denial of service conditions via sending a malformed consensus request to an orderer and crashing the orderer node.
References
github.com/hyperledger/fabric/commit/0f18359493bcbd5f9f9d1a9b05adabfe5da23b06
github.com/hyperledger/fabric/commit/80bcc1896d0c324a4cdef61a391b4e320734903d
github.com/hyperledger/fabric/pull/3495
github.com/hyperledger/fabric/pull/3500
github.com/hyperledger/fabric/releases/tag/v2.2.7
github.com/hyperledger/fabric/releases/tag/v2.4.5
github.com/hyperledger/fabric/security/advisories/GHSA-72x4-cq6r-jp4p
Related
osv
osv
Hyperledger Fabric vulnerable to Improper Input Validation in orderer/common/cluster consensus request
2022-07-08 17:06:39
BIT-hyperledger-fabric-tools-2022-31121
2024-07-18 19:22:13
BIT-hyperledger-fabric-orderer-2022-31121
2024-07-18 19:22:13
hackerone
hackerone
Hyperledger: Remote denial of service in HyperLedger Fabric
2022-06-17 08:51:18
github
github
prion
prion
Design/Logic Flaw
2022-07-07 18:15:00
cvelist
cvelist
CVE-2022-31121 Improper Input Validation in fabric hyperledger
2022-07-07 18:00:14
nvd
nvd
CVE-2022-31121
2022-07-07 18:15:09
cve
cve
CVE-2022-31121
2022-07-07 18:15:09