{"id":"CVE-2018-19167","details":"CloakCoin through 2.2.2.0 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service, exploitable by an attacker who acquires even a small amount of stake/coins in the system. The attacker sends invalid headers/blocks, which are stored on the victim's disk.","modified":"2026-03-14T09:28:49.999809Z","published":"2019-11-05T21:15:13.103Z","references":[{"type":"WEB","url":"https://medium.com/%40dsl_uiuc/fake-stake-attacks-on-chain-based-proof-of-stake-cryptocurrencies-b8b05723f806"},{"type":"ADVISORY","url":"http://fc19.ifca.ai/preproceedings/180-preproceedings.pdf"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/cloakproject/cloakcoin","events":[{"introduced":"0"},{"last_affected":"9f84d3af472592ef96ff9db83a32dd97a52d8653"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.2.2.0"}]}}],"versions":["2.2.1.0","v2.2.2.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-19167.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}