Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/04/06 10:57 a.m.7 views

CVE-2026-33184

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, the discovery handler accepts a peer-controlled limit during handshake and stores it unchanged. The immediate HandshakeAck path then honors lim...

7.5CVSS5.9AI score0.00461EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/03 10:9 p.m.2 views

CVE-2026-33184

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, the discovery handler accepts a peer-controlled limit during handshake and stores it unchanged. The immediate HandshakeAck path then honors lim...

7.5CVSS5.9AI score0.00461EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/03 10:9 p.m.2 views

CVE-2026-33184 nimiq/core-rs-albatross: Discovery handshake limit could underflow and later provoke a deterministic overflow panic

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, the discovery handler accepts a peer-controlled limit during handshake and stores it unchanged. The immediate HandshakeAck path then honors lim...

7.5CVSS6AI score0.00461EPSS
Exploits0References6
CVE
CVE
added 2026/04/03 10:9 p.m.18 views

CVE-2026-33184

The CVE affects the nimiq/core-rs-albatross Rust implementation of the Nimiq PoS Albatross protocol. Before 1.3.0, the discovery handshake allowed a peer-controlled limit to be stored, causing the HandshakeAck path to honor limit=0 and return zero contacts. After establishment, the periodic updat...

7.5CVSS5.9AI score0.00461EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/03 10:7 p.m.5 views

CVE-2026-34061

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, an elected validator proposer can send an election macro block whose header.interlink does not match the canonical next interlink. Honest...

4.9CVSS5.8AI score0.00187EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/02 1:50 a.m.5 views

CVE-2026-28402

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.2.2, a malicious or compromised validator that is elected as proposer can publish a macro block proposal where header.bodyroot does not match the...

7.1CVSS6AI score0.00204EPSS
Exploits0References1
OSV
OSV
added 2025/01/20 7:26 a.m.1 views

MAL-2025-209 Malicious code in nimiq-albatross-policy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca3bb93a4278599d8a954274f80cf86e5e66bdca53e4d7b4ccce3b5c08ea237b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/20 7:26 a.m.2 views

Malicious code in nimiq-albatross-policy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca3bb93a4278599d8a954274f80cf86e5e66bdca53e4d7b4ccce3b5c08ea237b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
Rows per page
Query Builder