CVE-2026-26314

CVSS v4.0

8.7

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions go-ethereum (geth) versions prior to 1.16.9 go-ethereum (geth) versions prior to 1.17.0

Description A specially crafted message can cause go-ethereum (geth) nodes to crash or shut down remotely. This issue does not require authentication. The vulnerable component is the peer-to-peer message handling within the Ethereum protocol implementation.

Recommendations Upgrade to version 1.16.9 or later. Upgrade to version 1.17.0 or later.

Exploit

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2026-26314

GHSA-2GJW-FG97-VG3R

GO-2026-4507

SUSE-SU-2026:0757-1

Affected Products

Go-Ethereum

CVE-2026-26314

Weakness Enumeration

Related Identifiers

Affected Products

References · 123