CVE-2024-23688: Discovery uses the same AES/GCM Nonce throughout the session

April 6, 2021 (updated December 2, 2025)

Discovery uses the same AES/GCM Nonce throughout the session though it should be generated on per message basis which can lead to the leaking of the session key. As the actual ENR record is signed with a different key it is not possible for an attacker to alter the ENR record. Note that the node private key is not compromised, only the session key generated to communicate with an individual peer.

References

github.com/ConsenSys/discovery
github.com/ConsenSys/discovery/security/advisories/GHSA-w3hj-wr2q-x83g
github.com/advisories/GHSA-w3hj-wr2q-x83g
nvd.nist.gov/vuln/detail/CVE-2024-23688
vulncheck.com/advisories/vc-advisory-GHSA-w3hj-wr2q-x83g

Code Behaviors & Features

Detect and mitigate CVE-2024-23688 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →