CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20587

Bitcoin Core 0.12.0 through 0.17.1 and Bitcoin Knots 0.12.0 through 0.17.x before 0.17.1.knots20181229 have Incorrect Access Control. Local users can exploit this to steal currency by binding the RPC IPv4 localhost port, and forwarding requests to the IPv6 localhost port.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.8%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

Products affected by CVE-2018-20587

Bitcoin » Bitcoin Core » Version: 0.12.0

cpe:2.3:a:bitcoin:bitcoin_core:0.12.0
Bitcoin » Bitcoin Core » Version: 0.12.1

cpe:2.3:a:bitcoin:bitcoin_core:0.12.1
Bitcoin » Bitcoin Core » Version: 0.13

cpe:2.3:a:bitcoin:bitcoin_core:0.13
Bitcoin » Bitcoin Core » Version: 0.13.0

cpe:2.3:a:bitcoin:bitcoin_core:0.13.0
Bitcoin » Bitcoin Core » Version: 0.13.1

cpe:2.3:a:bitcoin:bitcoin_core:0.13.1
Bitcoin » Bitcoin Core » Version: 0.13.2

cpe:2.3:a:bitcoin:bitcoin_core:0.13.2
Bitcoin » Bitcoin Core » Version: 0.14.0

cpe:2.3:a:bitcoin:bitcoin_core:0.14.0
Bitcoin » Bitcoin Core » Version: 0.14.1

cpe:2.3:a:bitcoin:bitcoin_core:0.14.1
Bitcoin » Bitcoin Core » Version: 0.14.2

cpe:2.3:a:bitcoin:bitcoin_core:0.14.2
Bitcoin » Bitcoin Core » Version: 0.14.3

cpe:2.3:a:bitcoin:bitcoin_core:0.14.3
Bitcoin » Bitcoin Core » Version: 0.15.0

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0
Bitcoin » Bitcoin Core » Version: 0.15.0.1

cpe:2.3:a:bitcoin:bitcoin_core:0.15.0.1
Bitcoin » Bitcoin Core » Version: 0.15.1

cpe:2.3:a:bitcoin:bitcoin_core:0.15.1
Bitcoin » Bitcoin Core » Version: 0.15.2

cpe:2.3:a:bitcoin:bitcoin_core:0.15.2
Bitcoin » Bitcoin Core » Version: 0.16.0

cpe:2.3:a:bitcoin:bitcoin_core:0.16.0
Bitcoin » Bitcoin Core » Version: 0.16.1

cpe:2.3:a:bitcoin:bitcoin_core:0.16.1
Bitcoin » Bitcoin Core » Version: 0.16.2

cpe:2.3:a:bitcoin:bitcoin_core:0.16.2
Bitcoin » Bitcoin Core » Version: 0.16.3

cpe:2.3:a:bitcoin:bitcoin_core:0.16.3
Bitcoin » Bitcoin Core » Version: 0.17.0

cpe:2.3:a:bitcoin:bitcoin_core:0.17.0
Bitcoin » Bitcoin Core » Version: 0.17.0.1

cpe:2.3:a:bitcoin:bitcoin_core:0.17.0.1
Bitcoin » Bitcoin Core » Version: 0.17.1

cpe:2.3:a:bitcoin:bitcoin_core:0.17.1
Bitcoinknots » Bitcoin Knots » Version: 0.12.0

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.12.0
Bitcoinknots » Bitcoin Knots » Version: 0.12.1

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.12.1
Bitcoinknots » Bitcoin Knots » Version: 0.13.0

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.13.0
Bitcoinknots » Bitcoin Knots » Version: 0.13.1

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.13.1
Bitcoinknots » Bitcoin Knots » Version: 0.13.2

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.13.2
Bitcoinknots » Bitcoin Knots » Version: 0.14.0

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.14.0
Bitcoinknots » Bitcoin Knots » Version: 0.14.1

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.14.1
Bitcoinknots » Bitcoin Knots » Version: 0.14.2

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.14.2
Bitcoinknots » Bitcoin Knots » Version: 0.15.0

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.15.0
Bitcoinknots » Bitcoin Knots » Version: 0.15.1

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.15.1
Bitcoinknots » Bitcoin Knots » Version: 0.16.0

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.16.0
Bitcoinknots » Bitcoin Knots » Version: 0.16.1

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.16.1
Bitcoinknots » Bitcoin Knots » Version: 0.16.2

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.16.2
Bitcoinknots » Bitcoin Knots » Version: 0.16.3

cpe:2.3:a:bitcoinknots:bitcoin_knots:0.16.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20587

Products

Pricing

Contact Us