Bitcoin Core discloses a high-severity vulnerability CVE-2024-52911, affecting versions 0.14.1–28.4, with approximately 43% of full nodes worldwide still running vulnerable versions. Attackers can remotely crash nodes or even execute code through special blocks. The vulnerability was discovered in November 2024, reported by Cory Fields, with the fix merged in December 2024. Version 29 was released in April 2025, and the 28.x series will cease maintenance in April 2026. Upgrading is entirely voluntary, and many nodes have not followed security advisories. Ordinary users are minimally affected but should upgrade to v29 as soon as possible to reduce risks. The security of the Bitcoin network depends on the timely maintenance of each node.

金色财经_

2026-05-06 07:08:11

Abstract generation in progress

Bitcoin Core officially discloses the high-severity vulnerability CVE-2024-52911, affecting multiple mainstream versions from 0.14.1 to 28.4. Globally, 43% of Bitcoin full nodes are still running outdated versions with the vulnerability, directly exposing them to attack risks.

It’s not an ordinary minor bug, but one that allows miners to craft special blocks to remotely crash other nodes, and in severe cases, execute code. Simply put, as long as nodes are not upgraded, attackers can broadcast malicious blocks to paralyze nodes, posing a significant threat to the stable operation of the decentralized network.

Many will ask, with such a serious vulnerability, why is it only now being disclosed?

In fact, the entire process was completed long ago. The vulnerability was discovered by developer Cory Fields as early as November 2024, and was privately reported according to industry standards. The team quickly completed the fix, merged the code in December 2024, and officially released version 29 in April 2025, fully patching the flaw. By April 19, 2026, the last remaining vulnerable 28.x series versions have officially ceased maintenance and no longer receive security support.

The reason nearly half of the nodes remain at risk is mainly because: Bitcoin full node upgrades are entirely voluntary, with no mandatory requirements. Many node operators find their software stable and are reluctant to update, and they did not promptly follow security notices until the vulnerability was publicly disclosed, realizing the risk only then.

Ordinary coin holders who only use exchanges and light wallets are generally unaffected and need not panic excessively; the real concern is for users who run and maintain their own Bitcoin full nodes.

The vulnerability details are now fully public, and the potential attack risk has shifted from latent to apparent. Do not hold onto false hope. If your node version is below v29, upgrade as soon as possible—this is the simplest and most effective way to avoid risk. The security of the Bitcoin network has always depended on each node being maintained in a timely manner.

BTC1.72%

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

Reward
like
Comment
Repost
Share

Comment

Add a comment

No comments

Trending Topics
View More
#
GateSquareMayTradingShare
398.64K Popularity
#
BitcoinHoldsFirmAbove80K
94.29M Popularity
#
CryptoMarketRecovery
114.61K Popularity
#
AaveSuesToUnfreeze73MInETH
1.84M Popularity
#
DailyPolymarketHotspot
825.75K Popularity

Sitemap

BTC High-Risk Vulnerability 43% of Nodes Worldwide Are at Risk

Trending Topics

GateSquareMayTradingShare

BitcoinHoldsFirmAbove80K

CryptoMarketRecovery

AaveSuesToUnfreeze73MInETH

DailyPolymarketHotspot

Pin