CVE-2020-26896
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Prior to 0.11.0-beta, LND (Lightning Network Daemon) had a vulnerability in its invoice database. While claiming on-chain a received HTLC output, it didn't verify that the corresponding outgoing off-chain HTLC was already settled before releasing the preimage. In the case of a hash-and-amount collision with an invoice, the preimage for an expected payment was instead released. A malicious peer could have deliberately intercepted an HTLC intended for the victim node, probed the preimage through a colluding relayed HTLC, and stolen the intercepted HTLC. The impact is a loss of funds in certain situations, and a weakening of the victim's receiver privacy.
Antes de la versión 0.11.0-beta, LND (Lightning Network Daemon) tenía una vulnerabilidad en su base de datos de facturas. Mientras reclamaba en cadena una salida HTLC recibida, no verificaba que la correspondiente salida HTLC fuera de cadena ya estaba resuelta antes de liberar la preimagen. En el caso de una colisión de hachís con una factura, la imagen previa para un pago esperado fue liberada. Un par malintencionado podría haber interceptado deliberadamente un HTLC destinado al nodo víctima, sondeado la imagen previa a través de un HTLC retransmitido y robado el HTLC interceptado. El impacto es una pérdida de fondos en ciertas situaciones, y un debilitamiento de la privacidad del receptor de la víctima
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-10-09 CVE Reserved
- 2020-10-21 CVE Published
- 2024-08-04 CVE Updated
- 2024-08-25 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-354: Improper Validation of Integrity Check Value
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://gist.github.com/ariard/6bdeb995565d1cc292753e1ee4ae402d | Third Party Advisory | |
| https://lists.linuxfoundation.org/pipermail/lightning-dev/2020-October/002855.html | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://lists.linuxfoundation.org/pipermail/lightning-dev/2020-October/002857.html | 2020-11-05 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | < 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version " < 0.11.0" | - |
Affected
| ||||||
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version "0.11.0" | - |
Affected
| ||||||
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version "0.11.0" | beta_rc1 |
Affected
| ||||||
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version "0.11.0" | beta_rc2 |
Affected
| ||||||
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version "0.11.0" | beta_rc3 |
Affected
| ||||||
| Lightning Network Daemon Project Search vendor "Lightning Network Daemon Project" | Lightning Network Daemon Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" | 0.11.0 Search vendor "Lightning Network Daemon Project" for product "Lightning Network Daemon" and version "0.11.0" | beta_rc4 |
Affected
| ||||||