Claymore Dual Miner Project Claymore Dual Miner vulnerabilities
3 known vulnerabilities affecting claymore_dual_miner_project/claymore_dual_miner.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2017-16929P1HIGHCVSS 8.1ExploitedPoCv10.12017-12-05
CVE-2017-16929 [HIGH] CWE-22 CVE-2017-16929: The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticate
The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This can be exploited via ../ sequences in the pathname to miner_file or miner_getfile.
nvd
CVE-2017-16930P1CRITICALCVSS 9.8PoCv10.12017-12-05
CVE-2017-16930 [CRITICAL] CWE-119 CVE-2017-16930: The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote
The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. This can be exploited via a long API request that is mishandled during logging.
nvd
CVE-2018-6317P2CRITICALCVSS 9.1PoC≤ 10.52018-02-02
CVE-2018-6317 [CRITICAL] CWE-134 CVE-2018-6317: The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthen
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthenticated format string vulnerability, allowing remote attackers to read memory or cause a denial of service.
nvd