The P2P protocols lack of rate limit. For example, in relay protocol, when a node receives a broadcasted tx_hashes
, it will mark it in memory to avoid duplicated requests. code → .
It is easy to establish a DoS attach by generating random tx hashes.
It affects all nodes connected to the P2P network.
Apply rate limit on the data sent to CKB P2P port.
{ "nvd_published_at": null, "cwe_ids": [], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2024-02-02T22:21:27Z" }