Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ethereum go ethereum vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-26240
Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. An ethash mining DAG generation flaw in Geth before version 1.9.24 could cause miners to erroneously calculate PoW in an upcoming epoch (estimated early January, 2021). This happened...
Ethereum Go Ethereum
7.1
CVSSv3
CVE-2020-26241
Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. This is a Consensus vulnerability in Geth before version 1.9.17 which can be used to cause a chain-split where vulnerable nodes reject the canonical chain. Geth's pre-compiled d...
Ethereum Go Ethereum
1 Github repository
7.5
CVSSv3
CVE-2020-26242
Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. In Geth before version 1.9.18, there is a Denial-of-service (crash) during block processing. This is fixed in 1.9.18.
Ethereum Go Ethereum
5.9
CVSSv3
CVE-2022-37450
Go Ethereum (aka geth) up to and including 1.10.21 allows malicious users to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference values to achieve replacement of main-chain blocks, aka Riskless Uncle Making (RUM), as exploited in t...
Ethereum Go Ethereum
5.3
CVSSv3
CVE-2020-26265
Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. In Geth from version 1.9.4 and before version 1.9.20 a consensus-vulnerability could cause a chain split, where vulnerable versions refuse to accept the canonical chain. The fix was ...
Ethereum Go Ethereum
5.5
CVSSv3
CVE-2021-43668
Go-Ethereum 1.10.9 nodes crash (denial of service) after receiving a serial of messages and cannot be recovered. They will crash with "runtime error: invalid memory address or nil pointer dereference" and arise a SEGV signal.
Ethereum Go Ethereum 1.10.9
7.5
CVSSv3
CVE-2018-19184
cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows malicious users to cause a denial of service (SEGV) via crafted bytecode.
Ethereum Go Ethereum 1.8.17
7.5
CVSSv3
CVE-2021-42219
Go-Ethereum v1.10.9 exists to contain an issue which allows malicious users to cause a denial of service (DoS) via sending an excessive amount of messages to a node. This is caused by missing memory in the component /ethash/algorithm.go.
Ethereum Go Ethereum 1.10.9
7.5
CVSSv3
CVE-2018-20421
Go Ethereum (aka geth) 1.8.19 allows malicious users to cause a denial of service (memory consumption) by rewriting the length of a dynamic array in memory, and then writing data to a single memory location with a large index number, as demonstrated by use of "assembly { mst...
Ethereum Go Ethereum 1.8.19
NA
CVE-2024-32972
go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. before 1.13.15, a vulnerable node can be made to consume very large amounts of memory when handling specially crafted p2p messages sent from an attacker node. The fix has been included in geth...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »