{"id":"CVE-2021-41592","details":"Blockstream c-lightning through 0.10.1 allows loss of funds because of dust HTLC exposure.","modified":"2026-04-12T02:01:14.187166Z","published":"2021-10-04T17:15:08.677Z","references":[{"type":"ADVISORY","url":"https://bitcoinmagazine.com/technical/good-griefing-a-lingering-vulnerability-on-lightning-network-that-still-needs-fixing"},{"type":"ADVISORY","url":"https://github.com/ElementsProject/lightning"},{"type":"ADVISORY","url":"https://lists.linuxfoundation.org/pipermail/lightning-dev/2020-May/002714.html"},{"type":"ADVISORY","url":"https://lists.linuxfoundation.org/pipermail/lightning-dev/2021-October/003257.html"},{"type":"ADVISORY","url":"https://lists.linuxfoundation.org/pipermail/lightning-dev/2021-October/003264.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ElementsProject/lightning","events":[{"introduced":"0"},{"last_affected":"f935107d01bbee115c572debe69adac96a91c7c4"}],"database_specific":{"source":"CPE_FIELD","cpe":"cpe:2.3:a:elementsproject:c-lightning:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"0"},{"last_affected":"0.10.1"}]}}],"versions":["hello","plugin-2-deadend","v0.1-2015-08-08","v0.10.0","v0.10.0rc1","v0.10.0rc2","v0.10.1","v0.10.1rc1","v0.10.1rc2","v0.2-2016-01-22","v0.3-2016-05-26","v0.4-2016-08-19","v0.5-2016-10-19","v0.5.1-2016-10-21","v0.5.2-2016-11-21","v0.6","v0.6.1rc1","v0.6.1rc2","v0.6.2","v0.6.2rc1","v0.6.3rc1","v0.6rc1","v0.6rc2","v0.7.0","v0.7.0rc1","v0.7.0rc2","v0.7.0rc3","v0.7.1","v0.7.1rc1","v0.7.1rc2","v0.7.1rc3","v0.7.1rc4","v0.7.1rc5","v0.7.2","v0.7.2.1","v0.7.2rc1","v0.7.2rc2","v0.7.3","v0.7.3rc1","v0.7.3rc2","v0.7.3rc3","v0.8.0","v0.8.0rc1","v0.8.0rc2","v0.8.1","v0.8.1rc1","v0.8.1rc2","v0.8.1rc3","v0.8.2","v0.8.2rc1","v0.8.2rc2","v0.8.2rc3","v0.9.0","v0.9.0rc1","v0.9.0rc2","v0.9.0rc3","v0.9.0rc4","v0.9.1","v0.9.1rc1","v0.9.1rc2","v0.9.2","v0.9.2rc1","v0.9.2rc2","v0.9.3","v0.9.3rc1","v0.9.3rc2","where-the-500-went"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-41592.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H"}]}