Vulnerabilities (CVE)

Filtered by vendor Grin Subscribe
Filtered by product Grin
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-12439 1 Grin 1 Grin 2024-02-04 5.0 MEDIUM 5.3 MEDIUM
Grin before 3.1.0 allows attackers to adversely affect availability of data on a Mimblewimble blockchain.
CVE-2020-15899 1 Grin 1 Grin 2024-02-04 5.0 MEDIUM 7.5 HIGH
Grin 3.0.0 before 4.0.0 has insufficient validation of data related to Mimblewimble.
CVE-2020-6638 1 Grin 1 Grin 2024-02-04 5.0 MEDIUM 7.5 HIGH
Grin through 2.1.1 has Insufficient Validation.
CVE-2019-9195 1 Grin 1 Grin 2024-02-04 7.5 HIGH 9.8 CRITICAL
util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files. An attacker can execute arbitrary code via directory traversal in a ZIP archive.