Desneake

**Name of the Vulnerable Software and Affected Versions** Chia Blockchain version 2.1.0 **Description** A security issue exists in Chia Blockchain version 2.1.0 related to missing authentication within the RPC Server Master Passphrase Handler component. Specifically, the `send transaction`/`get private key` function is affected. The issue is locally exploitable and has a high complexity rating, with exploitability described as difficult. The exploit has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.