Electrum Technologies GmbH Electrum Bitcoin Wallet version prior to version 3.0.5 contains a Missing Authorization vulnerability in JSONRPC interface that can result in Bitcoin theft, if the user's wallet is not password protected. This attack appear to be exploitable via The victim must visit a web page with specially crafted javascript. This vulnerability appears to have been fixed in 3.0.5.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-09T23:00:00
Updated: 2024-08-05T12:33:48.467Z
Reserved: 2018-01-29T00:00:00
Link: CVE-2018-1000022
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-02-09T23:29:00.603
Modified: 2024-11-21T03:39:26.830
Link: CVE-2018-1000022
Redhat
No data.