CVE-2026-33184: CWE-191: Integer Underflow (Wrap or Wraparound) in nimiq core-rs-albatross
CVE-2026-33184 is an integer underflow vulnerability in the nimiq/core-rs-albatross Rust implementation of the Nimiq Proof-of-Stake protocol. Versions prior to 1. 3. 0 accept a peer-controlled limit value during handshake that can be zero. This zero value leads to an underflow when the code subtracts one from the limit, causing a wraparound to a very large number and triggering a panic due to capacity overflow in a vector allocation. This results in a denial of service by crashing the application. The issue has been fixed in version 1. 3. 0.
AI Analysis
Technical Summary
The vulnerability arises because the discovery handler in nimiq/core-rs-albatross accepts a peer-controlled limit during handshake without validation. If the limit is zero, the subsequent subtraction (limit - 1) underflows, wrapping to usize::MAX. This large value is then used to allocate vector capacity in the rand crate, causing a deterministic panic due to capacity overflow. This leads to a denial of service condition by crashing the session. The flaw is patched in version 1.3.0.
Potential Impact
An attacker can cause a denial of service by sending a handshake with a limit value of zero, triggering an integer underflow and a panic that crashes the application session. There is no impact on confidentiality or integrity, but availability is affected due to the crash.
Mitigation Recommendations
Upgrade to nimiq/core-rs-albatross version 1.3.0 or later, where this integer underflow vulnerability has been fixed. Patch status is not explicitly confirmed in the advisory, but the fix is included in version 1.3.0. Until upgrading, avoid accepting untrusted peer-controlled limit values or implement input validation to prevent zero or invalid limits.
CVE-2026-33184: CWE-191: Integer Underflow (Wrap or Wraparound) in nimiq core-rs-albatross
Description
CVE-2026-33184 is an integer underflow vulnerability in the nimiq/core-rs-albatross Rust implementation of the Nimiq Proof-of-Stake protocol. Versions prior to 1. 3. 0 accept a peer-controlled limit value during handshake that can be zero. This zero value leads to an underflow when the code subtracts one from the limit, causing a wraparound to a very large number and triggering a panic due to capacity overflow in a vector allocation. This results in a denial of service by crashing the application. The issue has been fixed in version 1. 3. 0.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability arises because the discovery handler in nimiq/core-rs-albatross accepts a peer-controlled limit during handshake without validation. If the limit is zero, the subsequent subtraction (limit - 1) underflows, wrapping to usize::MAX. This large value is then used to allocate vector capacity in the rand crate, causing a deterministic panic due to capacity overflow. This leads to a denial of service condition by crashing the session. The flaw is patched in version 1.3.0.
Potential Impact
An attacker can cause a denial of service by sending a handshake with a limit value of zero, triggering an integer underflow and a panic that crashes the application session. There is no impact on confidentiality or integrity, but availability is affected due to the crash.
Mitigation Recommendations
Upgrade to nimiq/core-rs-albatross version 1.3.0 or later, where this integer underflow vulnerability has been fixed. Patch status is not explicitly confirmed in the advisory, but the fix is included in version 1.3.0. Until upgrading, avoid accepting untrusted peer-controlled limit values or implement input validation to prevent zero or invalid limits.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-17T22:16:36.720Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69d03f860a160ebd92619e11
Added to database: 4/3/2026, 10:30:30 PM
Last enriched: 4/3/2026, 10:45:28 PM
Last updated: 4/3/2026, 11:33:38 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.