PT-2024-25033 · Unknown · Stellar-Core
Published
2024-05-09
·
Updated
2024-05-14
·
CVE-2024-32985
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Stellar-core versions prior to 20.4.0
Description
The issue is related to a race condition with a 3rd party library in Stellar-core, which could cause core nodes to crash randomly. However, the likelihood of affecting the network is low because crashed nodes can come back online immediately.
Recommendations
For versions prior to 20.4.0, update to Stellar-core version 20.4.0 to apply the code fix mitigation.
Exploit
Fix
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stellar-Core