VYPR
Critical severityNVD Advisory· Published Jun 11, 2020· Updated Aug 4, 2024

Uncontrolled Resource Consumption in Indy Node

CVE-2020-11090

Description

In Indy Node 1.12.2, there is an Uncontrolled Resource Consumption vulnerability. Indy Node has a bug in TAA handling code. The current primary can be crashed with a malformed transaction from a client, which leads to a view change. Repeated rapid view changes have the potential of bringing down the network. This is fixed in version 1.12.3.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
indy-nodePyPI
>= 1.12.2, < 1.12.31.12.3

Affected products

2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.