Browse all 18 CVE security advisories affecting nimiq. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Nimiq is a blockchain platform focused on enabling peer-to-peer transactions without centralized infrastructure. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 16 recorded CVEs. The platform's security characteristics include its lightweight JavaScript-based implementation, though this has also introduced attack surfaces. Notable incidents include multiple RCE vulnerabilities in its node software that allowed attackers to execute arbitrary code, and XSS issues in its web wallet components. These vulnerabilities have primarily stemmed from input validation failures and insecure deserialization, highlighting ongoing challenges in securing decentralized applications.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34064 | nimiq-account: Vesting insufficient funds error can panic — nimiq-accountCWE-191 | 5.3 | Medium | 2026-04-22 |
This page lists every published CVE security advisory associated with nimiq. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.