CVE-2024-58132

Summary

In chainmaker-go (aka ChainMaker) before 2.3.6, multiple updates to a single node's configuration can cause other normal nodes to perform concurrent read and write operations on a map, leading to a panic.

Affected Software

VendorProductVersion RangeStatus
ChainMakerchainmaker-go0 < 2.3.6affected

Weaknesses

  • CWE-821: CWE-821 Incorrect Synchronization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References