Description

Hyperledger Fabric through 3.0.0 and 2.5.x through 2.5.9 do not verify that a request has a timestamp within the expected time window.

INFO

Published Date :

2024-08-25T00:00:00.000Z

Last Modified :

2025-10-06T14:30:08.614Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-45244 vulnerability.

Vendors Products
Hyperledger
  • Fabric
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-45244.

URL Resource
https://github.com/hyperledger/fabric/commit/155457a6624b3c74b22e5729c35c8499bfe952cd cve-icon cve-icon
https://github.com/shanker-sec/HLF_TxTime_spoofing cve-icon cve-icon
https://github.com/shanker-sec/hlf-time-oracle cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact