CVE-2018-1000618
CRITICALEOSIO/eos > f1545dd0ae2b77580c2236fdb70ae7138d2c7168 - Buffer Overflow
Title source: llmDescription
EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_serializer that can result in attack eos network node. This attack appear to be exploitable via network request. This vulnerability appears to have been fixed in after commit cf7209e703e6d3f7a5413e0cb1fe88a4d8e4b38d .
References (1)
Core 1
Core References
Third Party Advisory x_refsource_confirm
https://github.com/EOSIO/eos/pull/4112
Scores
CVSS v3
9.8
EPSS
0.0153
EPSS Percentile
71.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-674
Status
published
Products (1)
eosio_project/eos
Published
Jul 09, 2018
Tracked Since
Feb 18, 2026