Lucene search
K

4420 matches found

Snyk
Snyk
added 2026/01/13 9:55 p.m.3 views

Uncaught Exception

Overview Affected versions of this package are vulnerable to Uncaught Exception in the handling of failed KZG verification for p2p messages. An attacker can cause a node to shut down or crash by sending a specially crafted message. Remediation Upgrade github.com/ethereum/go-ethereum/core/txpool t...

7.5CVSS6.8AI score0.00636EPSS
Exploits0References2
OSV
OSV
added 2026/01/13 9:55 p.m.6 views

GHSA-MR7Q-C9W9-WH4H go-ethereum is vulnerable to DoS via malicious p2p message affecting a vulnerable node

Impact A vulnerable node can be forced to shutdown/crash using a specially crafted message. More details to be released later. Credit This issue was reported to the Ethereum Foundation Bug Bounty Program by DELENE TCHIO ROMUALD...

7.1CVSS6.8AI score0.00636EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/01/13 9:55 p.m.13 views

go-ethereum is vulnerable to DoS via malicious p2p message affecting a vulnerable node

Impact A vulnerable node can be forced to shutdown/crash using a specially crafted message. More details to be released later. Credit This issue was reported to the Ethereum Foundation Bug Bounty Program by DELENE TCHIO ROMUALD...

7.5CVSS6.9AI score0.00636EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/01/13 9:15 p.m.11 views

CVE-2026-22862

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.5CVSS0.00636EPSS
Exploits0References2
NVD
NVD
added 2026/01/13 9:15 p.m.7 views

CVE-2026-22868

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.5CVSS0.00569EPSS
Exploits0References2
OSV
OSV
added 2026/01/13 8:27 p.m.8 views

CVE-2026-22868 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS6.8AI score0.00569EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/13 8:27 p.m.6 views

EUVD-2026-2010

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS6.4AI score0.00569EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/13 8:27 p.m.30 views

CVE-2026-22868 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS0.00569EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 8:27 p.m.19 views

CVE-2026-22868

CVE-2026-22868 affects go-ethereum (geth). A vulnerable node can be forced to shutdown or crash by processing a specially crafted P2P message; multiple sources describe a DoS/Crash risk with high impact, including high CPU usage leading to DoS under certain advisories. The vulnerability is tied t...

7.5CVSS6.5AI score0.00569EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/13 8:27 p.m.26 views

CVE-2026-22862 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS0.00636EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/13 8:27 p.m.3 views

CVE-2026-22862 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS6.5AI score0.00636EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/13 8:27 p.m.6 views

EUVD-2026-2011

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS6.4AI score0.00636EPSS
Exploits0References4
OSV
OSV
added 2026/01/13 8:27 p.m.7 views

CVE-2026-22862 go-ethereum has a DoS via malicious p2p message

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...

7.1CVSS6.8AI score0.00636EPSS
Exploits0References4
CVE
CVE
added 2026/01/13 8:27 p.m.15 views

CVE-2026-22862

CVE-2026-22862 (go-ethereum/geth) : A DoS vulnerability affecting the Go implementation of the Ethereum protocol allows a vulnerable node to be forced to shutdown/crash by processing a specially crafted p2p message. Public sources (NVD, Red Hat, CIRCL/OSVGHSA) tie the issue to geth and indicate a...

7.5CVSS6.5AI score0.00636EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.6 views

go-ethereum 输入验证错误漏洞

go-ethereum is an ethereum protocol library open-sourced by ethereum. An input validation error vulnerability exists in go-ethereum versions prior to 1.16.8, which stems from a specially crafted message that could cause a node to shut down or crash...

7.5CVSS5.8AI score0.00636EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.9 views

PT-2026-2802

Name of the Vulnerable Software and Affected Versions go-ethereum geth versions prior to 1.16.8 Description go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A specially crafted message can force a vulnerable node to shutdown or crash. This can be triggered...

7.1CVSS5.4AI score0.00569EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.8 views

PT-2026-2801

Name of the Vulnerable Software and Affected Versions go-ethereum geth versions prior to 1.16.8 Description go-ethereum geth is a golang implementation of the Ethereum protocol. A specially crafted message can force a vulnerable node to shutdown or crash, resulting in a denial-of-service conditio...

7.5CVSS5.3AI score0.00636EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

go-ethereum 输入验证错误漏洞

go-ethereum is an ethereum protocol library open-sourced by ethereum. An input validation error vulnerability exists in go-ethereum versions prior to 1.16.8, which stems from a specially crafted message that could cause a node to shut down or crash...

7.5CVSS5.8AI score0.00569EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:24 p.m.10 views

CVE-2018-14085

An issue was discovered in a smart contract implementation for UserWallet 0x0a7bca9FB7AfF26c6ED8029BB6f0F5D291587c42, an Ethereum token. First, suppose that the owner adds the evil contract address to his sweepers. The evil contract looks like this: contract Exploit uint public start; function...

7.5CVSS6.9AI score0.00926EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:23 p.m.7 views

CVE-2018-14089

An issue was discovered in a smart contract implementation for VirgoZodiacToken, an Ethereum token. In this contract, 'bool sufficientAllowance = allowance =' which was intended. An attacker can transfer from any address to his address, and does not need to meet the 'allowance value' condition...

7.5CVSS7AI score0.00926EPSS
Exploits1References1
Rows per page
Query Builder