CVE-2018-25098
low-risk
Published 2024-02-04
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in blockmason credit-protocol. It has been declared as problematic. Affected by this vulnerability is the function executeUcacTx of the file contracts/CreditProtocol.sol of the component UCAC Handler. The manipulation leads to denial of service. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The patch is named 082e01f18707ef995e80ebe97fcedb229a55efc5. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-252799. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Do I need to act?
-
0.04% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.3/10
Medium
ADJACENT_NETWORK
/ LOW complexity
Affected Products (1)
Credit-Protocol
Affected Vendors
References (8)
Issue Tracking
https://github.com/blockmason/credit-protocol/pull/33
Permissions Required
https://vuldb.com/?ctiid.252799
Third Party Advisory
https://vuldb.com/?id.252799
Issue Tracking
https://github.com/blockmason/credit-protocol/pull/33
Permissions Required
https://vuldb.com/?ctiid.252799
Third Party Advisory
https://vuldb.com/?id.252799
20
/ 100
low-risk
Severity
15/34 · Moderate
Exploitability
0/34 · Minimal
Exposure
5/34 · Minimal