Overview
- Description
- A vulnerability has been detected in HyperLedger Fabric v1.4.0, v2.0.0, v2.1.0. This bug can be leveraged by constructing a message whose payload is nil and sending this message with the method 'forwardToLeader'. This bug has been admitted and fixed by the developers of Fabric. If leveraged, any leader node will crash.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-476
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:linuxfoundation:fabric:1.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AE1F2B85-8EC3-4525-A3F1-7D2AAD092EC5"
},
{
"criteria": "cpe:2.3:a:linuxfoundation:fabric:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1BCE2A3B-73F9-4C60-99D5-D6EEF26FA319"
},
{
"criteria": "cpe:2.3:a:linuxfoundation:fabric:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5110702-20BF-45EB-9B53-AC1FB2CEFDC8"
}
],
"operator": "OR"
}
]
}
]