Lightning_network_daemon_project Lightning_network_daemon
5 CVEs affecting Lightning_network_daemon_project Lightning_network_daemon. Latest disclosed: 2022-11-17. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-44797 | Critical | 9.8 | 2022-11-07 | btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking. |
CVE-2021-41593 | High | 8.6 | 2021-10-04 | Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure. |
CVE-2022-39389 | High | 8.2 | 2022-11-17 | Lightning Network Daemon (lnd) is an implementation of a lightning bitcoin overlay network node. All lnd nodes before version `v0.15.4` are vulnerable to a blo… |
CVE-2020-26896 | High | 8.2 | 2020-10-21 | Prior to 0.11.0-beta, LND (Lightning Network Daemon) had a vulnerability in its invoice database. While claiming on-chain a received HTLC output, it didn't ver… |
CVE-2020-26895 | Medium | 5.3 | 2020-10-21 | Prior to 0.10.0-beta, LND (Lightning Network Daemon) would have accepted a counterparty high-S signature and broadcast tx-relay invalid local commitment/HTLC t… |