Vulnerabilities > Protocol > Gossipsub

DATE CVE VULNERABILITY TITLE RISK
2022-12-19 CVE-2022-47547 Improper Preservation of Permissions vulnerability in Protocol Gossipsub 1.1
GossipSub 1.1, as used for Ethereum 2.0, allows a peer to maintain a positive score (and thus not be pruned from the network) even though it continuously misbehaves by never forwarding topic messages.
network
low complexity
protocol CWE-281
5.3
5.3
2020-07-07 CVE-2020-12821 Unspecified vulnerability in Protocol Gossipsub 1.0
Gossipsub 1.0 does not properly resist invalid message spam, such as an eclipse attack or a sybil attack.
network
low complexity
protocol
7.5
7.5