CVE-2024-38365

Summary

CVE-2024-38365 is a vulnerability in the btcd Bitcoin client, versions 0.10 to 0.24. This Go-based implementation of a full Bitcoin node failed to properly replicate the functionality of Bitcoin Core's "FindAndDelete()" feature. The consensus-critical nature of this issue means that btcd nodes may accept an invalid Bitcoin block or reject a valid one, potentially causing a chain split or a Denial of Service (DoS) attack. An attacker can manipulate a standard Bitcoin transaction, triggering a difference in behavior between btcd and other Bitcoin clients. This vulnerability, which can be exploited remotely by any Bitcoin user, does not require hash power. The issue arises due to the fact that 'removeOpcodeByData(script []byte, dataToRemove []byte)' function in btcd removes all occurrences of data in a script, unlike Bitcoin Core's 'FindAndDelete()' which only removes exact matches. The vulnerability has been patched in btcd version v0.24.2, and users are advised to upgrade as soon as possible, as there are no known workarounds.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.