CVE-2019-15947

In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it may dump a core file. If a user were to mishandle a core file, an attacker can reconstruct the user's wallet.dat file, including their private keys, via a grep "6231 0500" command.
Configurations

Configuration 1 (hide)

cpe:2.3:a:bitcoin:bitcoin_core:0.18.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-09-05 17:15

Updated : 2024-02-28 17:08


NVD link : CVE-2019-15947

Mitre link : CVE-2019-15947

CVE.ORG link : CVE-2019-15947


JSON object : View

Products Affected

bitcoin

  • bitcoin_core
CWE
CWE-312

Cleartext Storage of Sensitive Information