Ethereum

Go Ethereum

26 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2026-26315

  • EPSS 0.03%
  • Veröffentlicht 19.02.2026 21:22:41
  • Zuletzt bearbeitet 23.02.2026 18:21:52

go-ethereum (Geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, through a flaw in the ECIES cryptography implementation, an attacker may be able to extract bits of the p2p node key. The issue is resolv...

7.5

CVE-2026-26313

  • EPSS 0.03%
  • Veröffentlicht 19.02.2026 21:18:31
  • Zuletzt bearbeitet 23.02.2026 18:41:53

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.17.0, an attacker can cause high memory usage by sending a specially-crafted p2p message. The issue is resolved in the v1.17.0 release.

7.5

CVE-2026-26314

  • EPSS 0.06%
  • Veröffentlicht 19.02.2026 21:15:11
  • Zuletzt bearbeitet 23.02.2026 18:32:26

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, a vulnerable node can be forced to shutdown/crash using a specially crafted message. The problem is resolved in the v1.16.9 and v1.17.0 r...

7.5

CVE-2026-22868

  • EPSS 0.04%
  • Veröffentlicht 13.01.2026 20:27:15
  • Zuletzt bearbeitet 29.01.2026 18:04:50

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8.

7.5

CVE-2026-22862

  • EPSS 0.04%
  • Veröffentlicht 13.01.2026 20:27:10
  • Zuletzt bearbeitet 29.01.2026 18:03:38

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8.

8.7

CVE-2025-24883

  • EPSS 0.04%
  • Veröffentlicht 30.01.2025 16:15:31
  • Zuletzt bearbeitet 30.01.2025 16:15:31

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.14.13.

7.5

CVE-2024-32972

  • EPSS 0.59%
  • Veröffentlicht 06.05.2024 15:15:23
  • Zuletzt bearbeitet 21.11.2024 09:16:08

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to 1.13.15, a vulnerable node can be made to consume very large amounts of memory when handling specially crafted p2p messages sent from an attacker node. T...

7.5

CVE-2023-42319

Exploit
  • EPSS 0.67%
  • Veröffentlicht 18.10.2023 06:15:07
  • Zuletzt bearbeitet 21.11.2024 08:22:25

Geth (aka go-ethereum) through 1.13.4, when --http --graphql is used, allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a crafted GraphQL query. NOTE: the vendor's position is that the "graphql endpoint [is...

7.5

CVE-2023-40591

  • EPSS 0.32%
  • Veröffentlicht 06.09.2023 19:15:44
  • Zuletzt bearbeitet 21.11.2024 08:19:46

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node, can be made to consume unbounded amounts of memory when handling specially crafted p2p messages sent from an attacker node. The fix is included...

5.9

CVE-2022-37450

Exploit
  • EPSS 0.54%
  • Veröffentlicht 05.08.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:15:00

Go Ethereum (aka geth) through 1.10.21 allows attackers to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference values to achieve replacement of main-chain blocks, aka Riskless Uncle Making (RUM), as ex...