Bitcoin Core developers disclose CVE-2024-52911 high-risk vulnerability, approximately 43% of nodes still affected

Odaily Odaily reports that Bitcoin Core developers have disclosed a high-risk vulnerability numbered CVE-2024-52911. This vulnerability affects versions 0.14.1 to 28.4. Attackers can exploit it by constructing special blocks to remotely crash other nodes and execute code. The vulnerability was discovered and privately reported by developer Cory Fields in November 2024. The fix was merged in December 2024 and officially launched in the v29 version released in April 2025.

Currently, the last vulnerable version in the 28.x series ceased maintenance on April 19, 2026. However, since Bitcoin node upgrades are voluntary, it is estimated that approximately 43% of nodes are still running affected older versions, posing potential security risks.