CVE-2023-30769
CRITICALdogecoin < 1.14.6 - Denial of Service via Crafted Consensus Messages
Title source: llmDescription
Vulnerability discovered is related to the peer-to-peer (p2p) communications, attackers can craft consensus messages, send it to individual nodes and take them offline. An attacker can crawl the network peers using getaddr message and attack the unpatched nodes.
References (2)
Core 2
Core References
Third Party Advisory
https://www.halborn.com/blog/post/halborn-discovers-zero-day-impacting-dogecoin-and-280-networks
Third Party Advisory
https://www.halborn.com/disclosures
Scores
CVSS v3
9.1
EPSS
0.0092
EPSS Percentile
55.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (1)
dogecoin/dogecoin
< 1.14.6
Published
Apr 17, 2023
Tracked Since
Feb 18, 2026