CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-50475
https://notcve.org/view.php?id=CVE-2023-50475
21 Dec 2023 — An issue was discovered in bcoin-org bcoin version 2.2.0, allows remote attackers to obtain sensitive information via weak hashing algorithms in the component \vendor\faye-websocket.js. Se descubrió un problema en bcoin-org bcoin versión 2.2.0, que permite a atacantes remotos obtener información confidencial a través de algoritmos hash débiles en el componente \vendor\faye-websocket.js. • https://github.com/bcoin-org/bcoin/issues/1174 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 7.5EPSS: 1%CPEs: 24EXPL: 1CVE-2018-17145
https://notcve.org/view.php?id=CVE-2018-17145
10 Sep 2020 — Bitcoin Core 0.16.x before 0.16.2 and Bitcoin Knots 0.16.x before 0.16.2 allow remote denial of service via a flood of multiple transaction inv messages with random hashes, aka INVDoS. NOTE: this can also affect other cryptocurrencies, e.g., if they were forked from Bitcoin Core after 2017-11-15. Bitcoin Core versiones 0.16.x anteriores a 0.16.2 y Bitcoin Knots versiones 0.16.x anteriores a 0.16.2, permite la denegación de servicio remota por medio de una avalancha de mensajes inv de transacciones múltiples... • https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-17145 • CWE-400: Uncontrolled Resource Consumption •