← back
CVE-2019-16930

CVE-2019-16930

EPSS 1.6%
Zcashd in Zcash before 2.0.7-3 allows discovery of the IP address of a full node that owns a shielded address, related to mishandling of exceptions during deserialization of note plaintexts. This affects anyone who has disclosed their zaddr to a third party.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://duke.leto.net/2019/10/01/zcash-metadata-leakage-cve-2019-16930.htmlhttps://github.com/zcash/zcash/commit/c1fbf8ab5d73cff5e1f45236995857c75ba4128dhttps://github.com/zcash/zcash/releases/tag/v2.0.7-3https://z.cash/support/security/announcements/security-announcement-2019-09-24/