CVE-2021-43667
HIGH7.5EPSS 0.55%NULL Pointer Dereference in HyperLedger Fabric
發布日:2022/5/25修改日:2023/11/8
描述
A vulnerability has been detected in HyperLedger Fabric v1.4.0, v2.0.0, v2.1.0. This bug can be leveraged by constructing a message whose payload is nil and sending this message with the method 'forwardToLeader'. This bug has been admitted and fixed by the developers of Fabric. If leveraged, any leader node will crash.
受影響套件(1)
- Go/github.com/hyperledger/fabric>= 2.3.0, < 2.3.3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |