MEDIUM
hyperledger
CVE published 2026-06-08
CVE-2026-45581
CVE-2026-45581 is a vulnerability in fabric-chaincode-java, a Java-based implementation of Hyperledger Fabric chaincode shim APIs. Versions from 2.3.1 to before 2.5.10, when deployed in chaincode-as-a-service mode with TLS enabled, log the TLS private key password in plaintext at the INFO level. An attacker with access to these logs could recover the password and, if they also obtain the TLS private key, [truncated]