Description
Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.5.0, a remote, unauthenticated denial-of-service vulnerability in MerkleRadixTrie::put_chunk allows any state-sync peer to crash any node performing state synchronization (freshly joining nodes and recovering nodes). This issue has been patched in version 1.5.0.
Published: 2026-06-09
Score: 7.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability resides in the MerkleRadixTrie::put_chunk function of the Nimiq core-rs-albatross implementation. A remote, unauthenticated attacker can send specially crafted ROOT-keyed trie chunks that cause a panic in the node, resulting in a crash. This leads to a denial-of-service condition, allowing attackers to disrupt a node’s availability during state synchronization. The weakness is classified as CWE-248, an improper null termination issue that can be triggered during trie processing.

Affected Systems

The affected product is nimiq:core-rs-albatross. Versions older than 1.5.0 are vulnerable. The vulnerability was fixed in release 1.5.0, so any deployment using that version or later is not impacted.

Risk and Exploitability

The CVSS score of 7.5 indicates a high severity. EPSS data is not available, so the current exploitation probability cannot be quantified, and the vulnerability is not listed in CISA’s KEV catalog. Based on the description, the likely attack vector is a remote state-sync peer that can send malicious trie chunks without authentication.

Generated by OpenCVE AI on June 10, 2026 at 02:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update nimiq:core-rs-albatross to version 1.5.0 or later.
  • Ensure all nodes participating in state synchronization are updated to the patched version.
  • Monitor logs for crash events and verify that no unauthenticated peers remain connected during state sync.

Generated by OpenCVE AI on June 10, 2026 at 02:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-mw3q-r9wh-h2ff nimiq-primitives: Panic DoS in trie chunk processing via ROOT-keyed item
History

Wed, 10 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Nimiq
Nimiq core-rs-albatross
Vendors & Products Nimiq
Nimiq core-rs-albatross

Wed, 10 Jun 2026 00:00:00 +0000

Type Values Removed Values Added
Description Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.5.0, a remote, unauthenticated denial-of-service vulnerability in MerkleRadixTrie::put_chunk allows any state-sync peer to crash any node performing state synchronization (freshly joining nodes and recovering nodes). This issue has been patched in version 1.5.0.
Title nimiq-primitives: Panic DoS in trie chunk processing via ROOT-keyed item
Weaknesses CWE-248
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Nimiq Core-rs-albatross
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-09T23:47:51.072Z

Reserved: 2026-05-14T20:42:31.368Z

Link: CVE-2026-46545

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-10T00:16:54.770

Modified: 2026-06-10T00:16:54.770

Link: CVE-2026-46545

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T02:15:19Z

Weaknesses