Bitcoin Core before 24.1, when debug mode is not used, allows attackers to cause a denial of service (e.g., CPU consumption) because draining the inventory-to-send queue is inefficient, as exploited in the wild in May 2023.
References
Configurations
History
07 Nov 2023, 04:14
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
12 Oct 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Bitcoin Core before 24.1, when debug mode is not used, allows attackers to cause a denial of service (e.g., CPU consumption) because draining the inventory-to-send queue is inefficient, as exploited in the wild in May 2023. | |
References |
|
01 Jun 2023, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
31 May 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://github.com/bitcoin/bitcoin/pull/27610 - Issue Tracking, Patch | |
References | (MISC) https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures - Not Applicable | |
References | (MISC) https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-24.1.md - Release Notes | |
References | (MISC) https://github.com/bitcoin/bitcoin/issues/27586 - Issue Tracking | |
References | (MISC) https://github.com/bitcoin/bitcoin/issues/27623 - Issue Tracking | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Bitcoin bitcoin Core
Bitcoin |
|
CWE | CWE-400 | |
CPE | cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:* |
22 May 2023, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-22 05:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-33297
Mitre link : CVE-2023-33297
CVE.ORG link : CVE-2023-33297
JSON object : View
Products Affected
bitcoin
- bitcoin_core
CWE
CWE-400
Uncontrolled Resource Consumption