CVE-2026-26313

Published: Feb 19, 2026

Modified: Feb 20, 2026

PUBLISHED

Description

go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.17.0, an attacker can cause high memory usage by sending a specially-crafted p2p message. The issue is resolved in the v1.17.0 release.

Vendor	Product	Versions
ethereum	go-ethereum	affected `< 1.17.0`

Weaknesses (CWE)

CWE-770

References

https://github.com/ethereum/go-ethereum/security/advisories/GHSA-689v-6xwf-5jf3

x_refsource_CONFIRM

https://github.com/ethereum/go-ethereum/releases/tag/v1.17.0

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-26313

Description

Affected Products

Weaknesses (CWE)

References