RSS   Vulnerabilities for 'Iroha'   RSS

2018-06-01
 
CVE-2018-3756

CWE-347
 

 
Hyperledger Iroha versions v1.0_beta and v1.0.0_beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes accept them as separate valid signatures.

 

 >>> Vendor: Hyperledger 2 Products
Fabric
Iroha


Copyright 2024, cxsecurity.com

 

Back to Top