{"vulnerability": "cve-2022-23328", "sightings": [{"uuid": "3f381251-ad4e-4697-933b-c9754aeddaf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23328", "type": "seen", "source": "https://t.me/cibsecurity/38408", "content": "\u203c CVE-2022-23328 \u203c\n\nA design flaw in all versions of Go-Ethereum allows an attacker node to send 5120 pending transactions of a high gas price from one account that all fully spend the full balance of the account to a victim Geth node, which can purge all of pending transactions in a victim node's memory pool and then occupy the memory pool to prevent new transactions from entering the pool, resulting in a denial of service (DoS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-04T14:26:51.000000Z"}]}