Copay Bitcoin Wallet version 5.01 to 5.1.0 included. contains a Other/Unknown vulnerability in wallet private key storage that can result in Users' private key can be compromised. . This attack appear to be exploitable via Affected version run the malicious code at startup . This vulnerability appears to have been fixed in 5.2.0 and later .
References
Link | Resource |
---|---|
https://arstechnica.com/information-technology/2018/11/hacker-backdoors-widely-used-open-source-software-to-steal-bitcoin/ | Third Party Advisory |
https://blog.bitpay.com/npm-package-vulnerability-copay/ | Third Party Advisory |
https://github.com/bitpay/copay/issues/9346 | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/dominictarr/event-stream/issues/116 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:21:59
Updated: 2022-10-03T16:21:59
Reserved: 2018-11-27T00:00:00
Link: CVE-2018-1000851
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-12-20T15:29:02.500
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-1000851
JSON object: View
Redhat Information
No data.
CWE