Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Secured #5: Public Vulnerability Disclosures Update

    July 4, 2026

    Its partners just built a replacement

    July 4, 2026

    Starknet stutters, turns off and on again twice in one day

    July 4, 2026
    X (Twitter) Instagram YouTube LinkedIn
    X (Twitter) Instagram YouTube LinkedIn
    Block Hub News
    • Lithosphere News Releases
    • Crypto
    • Ethereum
    • Bitcoin
      • Litecoin
      • Altcoins
      • Coinbase
    • Blockchain
    Block Hub News
    Home ยป Secured #5: Public Vulnerability Disclosures Update
    Ethereum

    Secured #5: Public Vulnerability Disclosures Update

    Olivia MartinezBy Olivia MartinezJuly 4, 2026No Comments3 Mins Read
    Facebook Twitter Pinterest Telegram LinkedIn Tumblr Email Reddit
    Share
    Facebook Twitter LinkedIn Pinterest Email Copy Link



    Today, we have disclosed the second set of vulnerabilities from the Ethereum Foundation Bug Bounty Program! ๐Ÿฅณ These vulnerabilities were previously discovered and reported directly to the Ethereum Foundation.

    When bugs are reported and validated, the Ethereum Foundation coordinates disclosures to affected teams and helps cross-check vulnerabilities across all clients. The Bug Bounty Program currently accepts reports for the following client software:

    • Erigon
    • Go Ethereum
    • Lodestar
    • Nethermind
    • Lighthouse
    • Prysm
    • Teku
    • Besu
    • Nimbus

    In addition to client software, the Bug Bounty Program also covers the Deposit Contract, Execution Layer & Consensus Layer Specifications and Solidity. ๐Ÿ™

    Repository & vulnerability list

    Since the last vulnerability disclosure has been quite eventful with events such as the Merge ๐Ÿผ and the max bounty reward increase to $250,000. ๐Ÿ’ฐ

    The highest paid reward during this period was $50,000. This was awarded to scio for reporting an issue in which Lighthouse beacon nodes crashed via malicious BlocksByRange messages containing an overly large count value. You can read more about this specific vulnerability here. ๐Ÿ’ฅ

    Another notable set of vulnerabilites has been around fork choice attacks. EF researchers and client teams investigated and patched attacks that were able to cause long reorgs. ๐Ÿ‘€

    Guido Vranken holds the top spot most positive reports in this period. At the same time, Guido managed to collect the most points for the Bug Bounty Leaderboard! ๐Ÿ†

    We also have two bounty hunters who decided to donate their rewards to charities: nrv and PwningEth! ๐Ÿ”ฅ

    The full list of new vulnerabilities, along with full details, can be found in the disclosures repository.

    All vulnerabilities added to the disclosures catalogue were patched prior to the latest hardforks on the Execution Layer and Consensus Layer.

    For more information, and to learn more about disclosure policies, timelines, and cataloging, head over to the disclosures repository.

    Thank you ๐Ÿ™

    We would like to give a massive shout out to everyone involved in the discovery and reporting of vulnerabilities, as well as to the teams responsible for fixing them. While we have attempted to include the names or aliases of all reporters, there are many developers and researchers within the client teams and in the Ethereum Foundation who found and corrected vulnerabilities outside of the bounty program. There are also many unsung heroes such as client team developers, community members, and many more who have spent countless hours triaging, cross-checking, and mitigating vulnerabilities before they could be exploited.

    Your immense efforts have been instrumental to ensuring Ethereum’s security. Thank you!



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Olivia Martinez

    Related Posts

    Ethereum Protocol Fellowship: Third Cohort Recap

    July 4, 2026

    Ethereum Protocol Fellowship – Fourth Cohort Applications Are Open!

    July 4, 2026

    Allocation Update: Q1 2023 | Ethereum Foundation Blog

    July 4, 2026
    Leave A Reply Cancel Reply

    Demo
    Top Posts

    Tornado Cash user hacks SuperRare staking contract, steals $730K in RARE

    May 5, 2026

    How SHRMiner AI cloud mining is reshaping how to easily earn $9,997 in passive income in 2026

    May 5, 2026

    This feed has expired. Please contact us for pricing options.

    May 5, 2026

    Superrationality and DAOs | Ethereum Foundation Blog

    May 5, 2026
    Don't Miss

    Secured #5: Public Vulnerability Disclosures Update

    By Olivia MartinezJuly 4, 2026

    Today, we have disclosed the second set of vulnerabilities from the Ethereum Foundation Bug Bounty…

    Its partners just built a replacement

    July 4, 2026

    Starknet stutters, turns off and on again twice in one day

    July 4, 2026

    Ethereum Protocol Fellowship: Third Cohort Recap

    July 4, 2026
    Stay In Touch
    • Facebook
    • Twitter
    • Pinterest
    • Instagram
    • YouTube
    • Vimeo

    Subscribe to Updates

    Get the latest creative news from SmartMag about art & design.

    Demo
    X (Twitter) Instagram YouTube LinkedIn
    Our Picks

    Secured #5: Public Vulnerability Disclosures Update

    July 4, 2026

    Its partners just built a replacement

    July 4, 2026

    Starknet stutters, turns off and on again twice in one day

    July 4, 2026
    Most Popular

    Tornado Cash user hacks SuperRare staking contract, steals $730K in RARE

    May 5, 2026

    How SHRMiner AI cloud mining is reshaping how to easily earn $9,997 in passive income in 2026

    May 5, 2026

    This feed has expired. Please contact us for pricing options.

    May 5, 2026

    Type above and press Enter to search. Press Esc to cancel.