CNNVD-202512-879 Information
CNNVD ID
CNNVD-202512-879
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
Cashu NUTs是Cashu开源的一个Cashu协议规范。 Cashu NUTs 0.18.0之前版本存在安全漏洞,该漏洞源于未验证preimage大小,可能导致攻击者填充mint的数据库和磁盘。
Description (English)
Cashu NUTs is a Cashu protocol norm from the Kashu Open Source. The previous version of Cashu NUTs 0.18.0 had a security loophole, which had its origin in the unverified preimage size and could have led to the attacker filling the mint database and disk.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Cashu
Published
2025-12-08
Last Modified
2026-02-24
References
https://bitcointalk.org/index.php?topic=5564329 https://delvingbitcoin.org/t/public-disclosure-denial-of-service-using-htlc-in-cashu/2090 https://github.com/cashubtc/nuts/blob/main/07.md https://github.com/cashubtc/nuts/blob/main/14.md https://github.com/jamesob/delving-bitcoin-archive/blob/master/archive/rendered-topics/2025-11-November/2025-11-02-public-disclosure-denial-of-service-using-htlc-in-cashu-id2090.md https://preimage007.github.io/
Patch
https://github.com/cashubtc/nutshell/releases
Share on: