Vulnerabilities > Ethereum > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-18 | CVE-2023-42319 | Unspecified vulnerability in Ethereum GO Ethereum Geth (aka go-ethereum) through 1.13.4, when --http --graphql is used, allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a crafted GraphQL query. | 7.5 |
| 2023-09-06 | CVE-2023-40591 | Resource Exhaustion vulnerability in Ethereum GO Ethereum go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. | 7.5 |
| 2022-08-22 | CVE-2022-1930 | Unspecified vulnerability in Ethereum Eth-Account An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the eth-account PyPI package, when an attacker is able to supply arbitrary input to the encode_structured_data method | 7.5 |
| 2020-12-02 | CVE-2017-14451 | Out-of-bounds Read vulnerability in Ethereum An exploitable out-of-bounds read vulnerability exists in libevm (Ethereum Virtual Machine) of CPP-Ethereum. | 7.5 |
| 2018-01-19 | CVE-2017-14457 | Out-of-bounds Read vulnerability in Ethereum Virtual Machine An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum Virtual Machine) `create2` opcode handler of CPP-Ethereum. | 8.2 |
| 2018-01-19 | CVE-2017-12119 | Improper Check for Unusual or Exceptional Conditions vulnerability in Ethereum Cpp-Ethereum An exploitable unhandled exception vulnerability exists in multiple APIs of CPP-Ethereum JSON-RPC. | 7.5 |
| 2018-01-19 | CVE-2017-12118 | Incorrect Authorization vulnerability in Ethereum Cpp-Ethereum An exploitable improper authorization vulnerability exists in miner_stop API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). | 8.1 |
| 2018-01-19 | CVE-2017-12116 | Incorrect Authorization vulnerability in Ethereum Aleth An exploitable improper authorization vulnerability exists in miner_setGasPrice API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). | 8.1 |
| 2018-01-19 | CVE-2017-12113 | Incorrect Authorization vulnerability in Ethereum Cpp-Ethereum An exploitable improper authorization vulnerability exists in admin_nodeInfo API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). | 8.1 |
| 2018-01-19 | CVE-2017-12117 | Incorrect Authorization vulnerability in Ethereum Cpp-Ethereum An exploitable improper authorization vulnerability exists in miner_start API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). | 8.1 |