178 matches found
GHSA-MR7Q-C9W9-WH4H go-ethereum is vulnerable to DoS via malicious p2p message affecting a vulnerable node
Impact A vulnerable node can be forced to shutdown/crash using a specially crafted message. More details to be released later. Credit This issue was reported to the Ethereum Foundation Bug Bounty Program by DELENE TCHIO ROMUALD...
CVE-2026-22868 go-ethereum has a DoS via malicious p2p message
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...
CVE-2026-22862 go-ethereum has a DoS via malicious p2p message
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...
CVE-2026-22862 go-ethereum has a DoS via malicious p2p message
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...
go-ethereum 输入验证错误漏洞
go-ethereum is an ethereum protocol library open-sourced by ethereum. An input validation error vulnerability exists in go-ethereum versions prior to 1.16.8, which stems from a specially crafted message that could cause a node to shut down or crash...
go-ethereum 输入验证错误漏洞
go-ethereum is an ethereum protocol library open-sourced by ethereum. An input validation error vulnerability exists in go-ethereum versions prior to 1.16.8, which stems from a specially crafted message that could cause a node to shut down or crash...
CVE-2022-31121
Hyperledger Fabric is a permissioned distributed ledger framework. In affected versions if a consensus client sends a malformed consensus request to an orderer it may crash the orderer node. A fix has been added in commit 0f1835949 which checks for missing consensus messages and returns an error ...
CVE-2019-16754
RIOT 2019.07 contains a NULL pointer dereference in the MQTT-SN implementation asymcute, potentially allowing an attacker to crash a network node running RIOT. This requires spoofing an MQTT server response. To do so, the attacker needs to know the MQTT MsgID of a pending MQTT protocol message an...
EUVD-2008-1595
Malware in sbrugna...
EUVD-2009-0935
Malware in sbrugna...
EUVD-2021-21688
Malware in sbrugna...
EUVD-2021-2158
Malware in sbrugna...
EUVD-2022-0562
Malicious code in bioql PyPI...
EUVD-2024-1021
Malicious code in bioql PyPI...
EUVD-2022-0568
Malicious code in bioql PyPI...
EUVD-2022-5370
Malicious code in bioql PyPI...
EUVD-2025-10257
Malicious code in bioql PyPI...
PT-2025-40224
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0.neta Description The Linux kernel contains a flaw in the tipc Trusted Inter-Process Communication subsystem related to Maximum Transmission Unit MTU negotiation. A malicious peer could potentially send an...
CVE-2025-59942
go-f3 is a Golang implementation of Fast Finality for Filecoin F3. In versions 0.8.6 and below, go-f3 panics when it validates a "poison" messages causing Filecoin nodes consuming F3 messages to become vulnerable. A "poison" message can can cause integer overflow in the signer index validation,...
CVE-2025-59942 go-f3 module vulnerable to integer overflow leading to panic
go-f3 is a Golang implementation of Fast Finality for Filecoin F3. In versions 0.8.6 and below, go-f3 panics when it validates a "poison" messages causing Filecoin nodes consuming F3 messages to become vulnerable. A "poison" message can can cause integer overflow in the signer index validation,...