VYPR

Dual Miner

by Claymore Dual Miner Project

CVEs (3)

  • CVE-2017-16930CriDec 5, 2017
    risk 0.69cvss 9.8epss 0.34

    The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. This can be exploited via a long API request that is mishandled during logging.

  • CVE-2018-6317CriFeb 2, 2018
    risk 0.66cvss 9.1epss 0.44

    The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthenticated format string vulnerability, allowing remote attackers to read memory or cause a denial of service.

  • CVE-2017-16929HigDec 5, 2017
    risk 0.57cvss 8.1epss 0.13

    The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This can be exploited via ../…