Vulnerabilities > Grin

DATE CVE VULNERABILITY TITLE RISK
2020-07-28 CVE-2020-15899 Insufficient Verification of Data Authenticity vulnerability in Grin 3.0.0/3.1.0/3.1.1
Grin 3.0.0 before 4.0.0 has insufficient validation of data related to Mimblewimble.
network
low complexity
grin CWE-345
7.5
2020-05-05 CVE-2020-12439 Improper Resource Shutdown or Release vulnerability in Grin
Grin before 3.1.0 allows attackers to adversely affect availability of data on a Mimblewimble blockchain.
network
low complexity
grin CWE-404
5.3
2020-01-21 CVE-2020-6638 Improper Input Validation vulnerability in Grin
Grin through 2.1.1 has Insufficient Validation.
network
low complexity
grin CWE-20
7.5
2019-02-26 CVE-2019-9195 Path Traversal vulnerability in Grin
util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files.
network
low complexity
grin CWE-22
critical
9.8