Product

Nimiq-Keys (<= 0.2.0)

1 brief RSS

Nimiq nimiq-keys Ed25519 Signature Length Vulnerability (CVE-2026-40092)

A malicious network peer can crash a Nimiq full node by publishing a crafted Kademlia DHT record due to unchecked Ed25519 signature length in `TaggedPublicKey::verify` (CVE-2026-40092).

nimiq-keys dos nimiq signature-validation

2r 1t 1h ago