CVE-2013-2273 — MEDIUM (5.0)

Q: How severe is CVE-2013-2273?

CVE-2013-2273 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-2273?

Check the references section above for vendor advisories and patch information. Affected products include: Bitcoin Bitcoin-Qt, Bitcoin Bitcoin Core, Bitcoin Bitcoind.

Vulnerability Description

bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain potentially sensitive information about returned change by leveraging certain predictability in the outputs of a Bitcoin transaction.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Bitcoin	Bitcoin-Qt	<= 0.4.8
Bitcoin	Bitcoin Core	All versions
Bitcoin	Bitcoind	<= 0.4.4

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2013-2273?

CVE-2013-2273 is a vulnerability with a CVSS score of 5.0 (MEDIUM). bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain p...

How severe is CVE-2013-2273?

CVE-2013-2273 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-2273?

Check the references section above for vendor advisories and patch information. Affected products include: Bitcoin Bitcoin-Qt, Bitcoin Bitcoin Core, Bitcoin Bitcoind.