CVE-2024-45244
ADVISORY - githubSummary
Hyperledger Fabric through 2.5.9 does not verify that a request has a timestamp within the expected time window.
EPSS Score: 0.00605 (0.692)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Authentication Bypass by Capture-replay
ADVISORY - github
ADVISORY - gitlab
OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
Improper Authorization
Authentication Bypass by Capture-replay
Operation on a Resource after Expiration or Release
OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
NIST
CREATED
UPDATED
ADVISORY IDCVE-2024-45244
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
5.3mediumGitHub
CVSS SCORE
5.3mediumGoLang
CREATED
UPDATED
ADVISORY IDGO-2024-3099
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Bitnami
CREATED
UPDATED
ADVISORY ID
BIT-hyperledger-fabric-orderer-2024-45244
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
5.3mediumBitnami
CREATED
UPDATED
ADVISORY ID
BIT-hyperledger-fabric-peer-2024-45244
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
5.3mediumBitnami
CREATED
UPDATED
ADVISORY ID
BIT-hyperledger-fabric-tools-2024-45244
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-