CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5232

A user who owns an ENS domain can set a trapdoor, allowing them to transfer ownership to another user, and later regain ownership without the new owners consent or awareness. A new ENS deployment is being rolled out that fixes this vulnerability in the ENS registry.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.1%

CVSS Severity

CVSS v3 Score 8.7

CVSS v2 Score 4.9

References

Products affected by CVE-2020-5232

Ens.domains » Ethereum Name Service » Version: N/A

cpe:2.3:a:ens.domains:ethereum_name_service:-
Ens.domains » Ethereum Name Service » Version: 0.0.1

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.1
Ens.domains » Ethereum Name Service » Version: 0.0.10

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.10
Ens.domains » Ethereum Name Service » Version: 0.0.11

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.11
Ens.domains » Ethereum Name Service » Version: 0.0.12

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.12
Ens.domains » Ethereum Name Service » Version: 0.0.13

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.13
Ens.domains » Ethereum Name Service » Version: 0.0.14

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.14
Ens.domains » Ethereum Name Service » Version: 0.0.15

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.15
Ens.domains » Ethereum Name Service » Version: 0.0.16

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.16
Ens.domains » Ethereum Name Service » Version: 0.0.17

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.17
Ens.domains » Ethereum Name Service » Version: 0.0.18

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.18
Ens.domains » Ethereum Name Service » Version: 0.0.19

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.19
Ens.domains » Ethereum Name Service » Version: 0.0.2

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.2
Ens.domains » Ethereum Name Service » Version: 0.0.20

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.20
Ens.domains » Ethereum Name Service » Version: 0.0.21

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.21
Ens.domains » Ethereum Name Service » Version: 0.0.22

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.22
Ens.domains » Ethereum Name Service » Version: 0.0.3

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.3
Ens.domains » Ethereum Name Service » Version: 0.0.4

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.4
Ens.domains » Ethereum Name Service » Version: 0.0.5

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.5
Ens.domains » Ethereum Name Service » Version: 0.0.6

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.6
Ens.domains » Ethereum Name Service » Version: 0.0.7

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.7
Ens.domains » Ethereum Name Service » Version: 0.0.8

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.8
Ens.domains » Ethereum Name Service » Version: 0.0.9

cpe:2.3:a:ens.domains:ethereum_name_service:0.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5232

Products

Pricing

Contact Us