CVE-2026-22868

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions go-ethereum (geth) versions prior to 1.16.8

Description go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A specially crafted message can force a vulnerable node to shutdown or crash. This can be triggered remotely without requiring authentication.

Recommendations Upgrade to version 1.16.8.

Exploit

Fix

Resource Exhaustion

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-20

Related Identifiers

CVE-2026-22868

GHSA-MQ3P-RRMP-79JG

GO-2026-4314

SUSE-SU-2026:0292-1

Affected Products

Go-Ethereum

CVE-2026-22868

Weakness Enumeration

Related Identifiers

Affected Products

References · 28