Description
Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, iIn handle_dht_get(), the DhtResults accumulator is only initialized when the first DHT record passes verification. If the first record fails (from a malicious DHT node), DhtResults is never created, and all subsequent valid records are discarded with "DHT inconsistent state" errors. This issue has been patched in version 1.4.0.
Published: 2026-06-09
Score: 7.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A malformed first DHT record in a Nimiq node prevents the proper initialization of the results accumulator, causing all subsequent valid records to be discarded and the DHT to report an inconsistent state. The attacker can thus cause a node to fall out of sync with the network or become unable to process legitimate DHT queries, resulting in a loss of service availability. The weakness is a verification failure, classified as CWE-754.

Affected Systems

The vulnerability affects the Nimiq core-rs-albatross implementation until version 1.4.0. Systems running any earlier releases are susceptible to the denial of service condition described.

Risk and Exploitability

The CVSS score of 7.5 indicates a moderate to high severity risk, while the EPSS score is not available and the issue is not listed in the CISA KEV catalog. The likely attack vector is a malicious peer in the libp2p DHT network that can inject a bad first record; the attacker does not need local access to the node. When the vulnerable node contacts such a peer, it becomes unable to process subsequent queries, effectively disrupting its participation in the blockchain network.

Generated by OpenCVE AI on June 10, 2026 at 02:06 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Nimiq core-rs-albatross to version 1.4.0 or later.
  • If an upgrade is not immediately possible, implement network filtering rules to block peers that supply malformed DHT records or quarantine them until verification is successful.
  • Enable detailed logging of DHT errors and monitor for "DHT inconsistent state" messages to detect exploitation attempts.

Generated by OpenCVE AI on June 10, 2026 at 02:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Nimiq
Nimiq core-rs-albatross
Vendors & Products Nimiq
Nimiq core-rs-albatross

Wed, 10 Jun 2026 00:00:00 +0000

Type Values Removed Values Added
Description Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, iIn handle_dht_get(), the DhtResults accumulator is only initialized when the first DHT record passes verification. If the first record fails (from a malicious DHT node), DhtResults is never created, and all subsequent valid records are discarded with "DHT inconsistent state" errors. This issue has been patched in version 1.4.0.
Title Nimiq network-libp2p: DHT query poisoning via first-record verification failure
Weaknesses CWE-754
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Nimiq Core-rs-albatross
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-09T23:45:38.719Z

Reserved: 2026-05-14T20:42:31.368Z

Link: CVE-2026-46541

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-10T00:16:54.367

Modified: 2026-06-10T00:16:54.367

Link: CVE-2026-46541

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T02:15:19Z

Weaknesses