Vulnerability Details CVE-2023-46135
rs-stellar-strkey is a Rust lib for encode/decode of Stellar Strkeys. A panic vulnerability occurs when a specially crafted payload is used.`inner_payload_len` should not above 64. This vulnerability has been patched in version 0.0.8.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.6%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2023-46135
-
cpe:2.3:a:stellar:rs-stellar-strkey:-
-
cpe:2.3:a:stellar:rs-stellar-strkey:0.0.1
-
cpe:2.3:a:stellar:rs-stellar-strkey:0.0.2
-
cpe:2.3:a:stellar:rs-stellar-strkey:0.0.6
-
cpe:2.3:a:stellar:rs-stellar-strkey:0.0.7