Vulnerabilities > CVE-2020-8807 - Unspecified vulnerability in Electriccoin Zcashd

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

electriccoin

NVD

Published: 2021-02-05

Updated: 2021-02-08

Summary

In Electric Coin Company Zcashd before 2.1.1-1, the time offset between messages could be leveraged to obtain sensitive information about the relationship between a suspected victim's address and an IP address, aka a timing side channel.

Vulnerable Configurations

Part	Description	Count
Application	Electriccoin Electriccoin Zcashd *	1

References

https://electriccoin.co/blog/new-releases-2-1-1-and-hotfix-2-1-1-1/