CVE-2018-19157
HIGHPhore < 1.3.3.1 - Remote Denial of Service via Invalid Block Headers
Title source: llmDescription
Phore through 1.3.3.1 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service, exploitable by an attacker who acquires even a small amount of stake/coins in the system. The attacker sends invalid headers/blocks, which are stored on the victim's disk.
References (2)
Core 2
Core References
Various Sources x_refsource_misc
https://medium.com/%40dsl_uiuc/fake-stake-attacks-on-chain-based-proof-of-stake-cryptocurrencies-b8b05723f806
Third Party Advisory x_refsource_misc
http://fc19.ifca.ai/preproceedings/180-preproceedings.pdf
Scores
CVSS v3
7.5
EPSS
0.0133
EPSS Percentile
67.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (1)
phore/phore
< 1.3.3.1
Published
Nov 05, 2019
Tracked Since
Feb 18, 2026