Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-12439 | 1 Grin | 1 Grin | 2024-02-04 | 5.0 MEDIUM | 5.3 MEDIUM |
Grin before 3.1.0 allows attackers to adversely affect availability of data on a Mimblewimble blockchain. | |||||
CVE-2020-15899 | 1 Grin | 1 Grin | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Grin 3.0.0 before 4.0.0 has insufficient validation of data related to Mimblewimble. | |||||
CVE-2020-6638 | 1 Grin | 1 Grin | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Grin through 2.1.1 has Insufficient Validation. | |||||
CVE-2019-9195 | 1 Grin | 1 Grin | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files. An attacker can execute arbitrary code via directory traversal in a ZIP archive. |