CVE-2019-25220 - Vulnerability Details - OpenCVE

Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash) via a flood of low-difficulty header chains (aka a "Chain Width Expansion" attack) because a node does not first verify that a presented chain has enough work before committing to store it.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Bitcoin	Bitcoin Core

Configuration 1 [-]

cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://bitcoincore.org/en/2024/09/18/disclose-headers-oom
https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures
https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2019-October/017354.html

History

Mon, 18 Nov 2024 17:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Bitcoin Bitcoin bitcoin Core
Weaknesses		CWE-770
CPEs		cpe:2.3:a:bitcoin:bitcoin_core::::::::
Vendors & Products		Bitcoin Bitcoin bitcoin Core
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 18 Nov 2024 03:30:00 +0000

Type	Values Removed	Values Added
Description		Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash) via a flood of low-difficulty header chains (aka a "Chain Width Expansion" attack) because a node does not first verify that a presented chain has enough work before committing to store it.
References		https://bitcoincore.org/en/2024/09/18/disclose-headers-oom https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2019-October/017354.html

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-11-18T00:00:00

Updated: 2024-11-18T16:28:52.209Z

Reserved: 2024-11-18T00:00:00

Link: CVE-2019-25220

Vulnrichment

Updated: 2024-11-18T16:28:40.669Z

NVD

Status : Analyzed

Published: 2024-11-18T04:15:04.107

Modified: 2025-05-22T16:56:23.983

Link: CVE-2019-25220

Redhat

No data.

{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2019-25220", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-11-18T16:28:52.209Z", "dateReserved": "2024-11-18T00:00:00", "datePublished": "2024-11-18T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-11-18T03:17:39.411525"}, "descriptions": [{"lang": "en", "value": "Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash) via a flood of low-difficulty header chains (aka a \"Chain Width Expansion\" attack) because a node does not first verify that a presented chain has enough work before committing to store it."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures"}, {"url": "https://bitcoincore.org/en/2024/09/18/disclose-headers-oom"}, {"url": "https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2019-October/017354.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-770", "lang": "en", "description": "CWE-770 Allocation of Resources Without Limits or Throttling"}]}], "affected": [{"vendor": "bitcoin", "product": "bitcoin_core", "cpes": ["cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "24.0.1", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-11-18T16:17:07.914367Z", "id": "CVE-2019-25220", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-18T16:28:52.209Z"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2019-25220", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-18T16:17:07.914367Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*"], "vendor": "bitcoin", "product": "bitcoin_core", "versions": [{"status": "affected", "version": "0", "lessThan": "24.0.1", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-770", "description": "CWE-770 Allocation of Resources Without Limits or Throttling"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-18T16:28:40.669Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures"}, {"url": "https://bitcoincore.org/en/2024/09/18/disclose-headers-oom"}, {"url": "https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2019-October/017354.html"}], "descriptions": [{"lang": "en", "value": "Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash) via a flood of low-difficulty header chains (aka a \"Chain Width Expansion\" attack) because a node does not first verify that a presented chain has enough work before committing to store it."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-11-18T03:17:39.411525"}}}, "cveMetadata": {"cveId": "CVE-2019-25220", "state": "PUBLISHED", "dateUpdated": "2024-11-18T16:28:52.209Z", "dateReserved": "2024-11-18T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2024-11-18T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*", "matchCriteriaId": "55E9245E-1473-4830-BAD2-7E2BF9E3D298", "versionEndExcluding": "24.0.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash) via a flood of low-difficulty header chains (aka a \"Chain Width Expansion\" attack) because a node does not first verify that a presented chain has enough work before committing to store it."}, {"lang": "es", "value": "Bitcoin Core anterior a 24.0.1 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (falla del demonio) a trav\u00e9s de una inundaci\u00f3n de cadenas de encabezado de baja dificultad (tambi\u00e9n conocido como un ataque de \"expansi\u00f3n del ancho de la cadena\") porque un nodo no verifica primero que una cadena presentada tenga suficiente trabajo antes de comprometerse a almacenarla."}], "id": "CVE-2019-25220", "lastModified": "2025-05-22T16:56:23.983", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-11-18T04:15:04.107", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://bitcoincore.org/en/2024/09/18/disclose-headers-oom"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2019-October/017354.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-770"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}