Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2021-41173
Analyzed
More InfoOfficial Page
Source-security-advisories@github.com
View Known Exploited Vulnerability (KEV) details
Published At-26 Oct, 2021 | 14:15
Updated At-28 Oct, 2021 | 20:55

Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.9, a vulnerable node is susceptible to crash when processing a maliciously crafted message from a peer. Version v1.10.9 contains patches to the vulnerability. There are no known workarounds aside from upgrading.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.15.7MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Primary2.03.5LOW
AV:N/AC:M/Au:S/C:N/I:N/A:P
CPE Matches
ethereum
ethereum
>>go_ethereum>>Versions before 1.10.9(exclusive)
cpe:2.3:a:ethereum:go_ethereum:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-noinfoPrimarynvd@nist.gov
CWE-20Secondarysecurity-advisories@github.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://github.com/ethereum/go-ethereum/commit/e40b37718326b8b4873b3b00a0db2e6c6d9ea738security-advisories@github.com
Patch
Third Party Advisory
https://github.com/ethereum/go-ethereum/pull/23801security-advisories@github.com
Patch
Third Party Advisory
https://github.com/ethereum/go-ethereum/releases/tag/v1.10.9security-advisories@github.com
Release Notes
Third Party Advisory
https://github.com/ethereum/go-ethereum/security/advisories/GHSA-59hh-656j-3p7vsecurity-advisories@github.com
Third Party Advisory
Change History
0Changes found
Details not found