CVE-2023-37192: 
Bitcoin Core vulnerability analysis and mitigation

Memory management and protection issues in Bitcoin Core v22 allows attackers to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing. This vulnerability was disclosed on July 6, 2023, and is tracked as CVE-2023-37192. The vulnerability affects Bitcoin Core version 22.0 (Bitcoin Core, Satoshi Blog).

The vulnerability stems from memory management issues that allow attackers to access Bitcoin's process and search for Bitcoin wallet addresses stored in memory. While Bitcoin uses SHA-256 for blockchain data encryption, the BTC addresses themselves are not encrypted in memory. This enables attackers to locate and modify public addresses stored within the Bitcoin app prior to transaction initiation. The CVSS v3.1 base score for this vulnerability is 7.5 HIGH (Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N) (NVD).

If successfully exploited, an attacker can redirect Bitcoin transactions to their own wallet addresses by modifying the stored sending address in the application's memory. Due to the decentralized nature of Bitcoin and the irreversibility of transactions, any redirected funds would be permanently lost (Satoshi Blog).

Users are advised to use cold wallets as a temporary mitigation measure until the vulnerability is patched. Cold wallets store cryptocurrency offline and are not susceptible to this memory-based attack (Satoshi Blog).