Skip to main content

Canister Developer Kit For The Internet Computer

1 CVEs product

Monthly

CVE-2024-7884 Cargo HIGH PATCH This Week

When a canister method is called via ic_cdk::call* , a new Future CallFuture is created and can be awaited by the caller to get the execution result. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Memory Leak vulnerability could allow attackers to exhaust available memory leading to denial of service.

Information Disclosure Canister Developer Kit For The Internet Computer
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

When a canister method is called via ic_cdk::call* , a new Future CallFuture is created and can be awaited by the caller to get the execution result. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Memory Leak vulnerability could allow attackers to exhaust available memory leading to denial of service.

Information Disclosure Canister Developer Kit For The Internet Computer
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy