Ethereum Go_ethereum

24 CVEs affecting Ethereum Go_ethereum. Latest disclosed: 2026-02-19. Critical: 0, High: 14.

Top CVEs affecting Ethereum Go_ethereum
CVESeverityScorePublishedSummary
CVE-2026-26315High7.52026-02-19go-ethereum (Geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, through a flaw in the ECIES cryptography imple…
CVE-2026-26314High7.52026-02-19go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, a vulnerable node can be forced to shutdown/cr…
CVE-2026-26313High7.52026-02-19go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.17.0, an attacker can cause high memory usage by sen…
CVE-2026-22868High7.52026-01-13go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially cra…
CVE-2026-22862High7.52026-01-13go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially cra…
CVE-2023-42319High7.52023-10-18Geth (aka go-ethereum) through 1.13.4, when --http --graphql is used, allows remote attackers to cause a denial of service (memory consumption and daemon hang)…
CVE-2023-40591High7.52023-09-06go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node, can be made to consume unbounded amounts of memory w…
CVE-2021-42219High7.52022-03-17Go-Ethereum v1.10.9 was discovered to contain an issue which allows attackers to cause a denial of service (DoS) via sending an excessive amount of messages to…
CVE-2022-23328High7.52022-03-04A design flaw in all versions of Go-Ethereum allows an attacker node to send 5120 pending transactions of a high gas price from one account that all fully spen…
CVE-2022-23327High7.52022-03-04A design flaw in Go-Ethereum 1.10.12 and older versions allows an attacker node to send 5120 future transactions with a high gas price in one message, which ca…
CVE-2018-20421High7.52018-12-24Go Ethereum (aka geth) 1.8.19 allows attackers to cause a denial of service (memory consumption) by rewriting the length of a dynamic array in memory, and then…
CVE-2018-19184High7.52018-11-12cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to cause a denial of service (SEGV) via crafted bytecode.
CVE-2018-16733High7.52018-09-08In Go Ethereum (aka geth) before 1.8.14, TraceChain in eth/api_tracer.go does not verify that the end block is after the start block.
CVE-2018-12018High7.52018-07-05The GetBlockHeadersMsg handler in the LES protocol implementation in Go Ethereum (aka geth) before 1.8.11 may lead to an access violation because of an integer…
CVE-2021-39137Medium6.52021-08-24go-ethereum is the official Go implementation of the Ethereum protocol. In affected versions a consensus-vulnerability in go-ethereum (Geth) could cause a chai…
CVE-2020-26264Medium6.52020-12-11Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. In Geth before version 1.9.25 a denial-of-service vulnerability can mak…
CVE-2020-26242Medium6.52020-11-25Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. In Geth before version 1.9.18, there is a Denial-of-service (crash) dur…
CVE-2020-26241Medium6.52020-11-25Go Ethereum, or "Geth", is the official Golang implementation of the Ethereum protocol. This is a Consensus vulnerability in Geth before version 1.9.17 which c…
CVE-2022-37450Medium5.92022-08-05Go Ethereum (aka geth) through 1.10.21 allows attackers to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference…
CVE-2022-29177Medium5.92022-05-20Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.17, a vulnerable node, if configured to use high verbosity lo…