Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a crafted channel tx with the same Channel name. NOTE: the official Fabric with Raft prevents exploitation via a locking mechanism and a check for names that already exist.
{ "severity": "High", "cpes": [ "cpe:2.3:a:hyperledger:fabric:2.3:*:*:*:*:*:*:*", "cpe:2.3:a:hyperledger:fabric:*:*:*:*:*:*:*:*" ] }