CVE-2017-20154

low-risk
Published 2022-12-30

A vulnerability was found in ghostlander Phoenixcoin. It has been classified as problematic. Affected is the function CTxMemPool::accept of the file src/main.cpp. The manipulation leads to denial of service. Upgrading to version 0.6.6.1-pxc is able to address this issue. The name of the patch is 987dd68f71a7d8276cef3b6c3d578fd4845b5699. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-217068.

Do I need to act?

-
0.46% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
3
CVSS 3.5/10 Low
ADJACENT_NETWORK / LOW complexity

Affected Products (1)

Phoenixcoin

Affected Vendors

Phoenixcoin Project

References (8)

Patch https://github.com/ghostlander/Phoenixcoin/commit/987dd68f71a7d8276cef3b6c3d578f...
Release Notes https://github.com/ghostlander/Phoenixcoin/releases/tag/v0.6.6.1-pxc
Third Party Advisory https://vuldb.com/?ctiid.217068
Third Party Advisory https://vuldb.com/?id.217068
Patch https://github.com/ghostlander/Phoenixcoin/commit/987dd68f71a7d8276cef3b6c3d578f...
Release Notes https://github.com/ghostlander/Phoenixcoin/releases/tag/v0.6.6.1-pxc
Third Party Advisory https://vuldb.com/?ctiid.217068
Third Party Advisory https://vuldb.com/?id.217068
20
/ 100
low-risk
Severity 13/34 · Low
Exploitability 2/34 · Minimal
Exposure 5/34 · Minimal