BitcoinCore developers disclose CVE-2024-52911 high-risk vulnerability, approximately 43% of nodes remain affected

Odaily Planet Daily News: Bitcoin Core developers have disclosed a high-risk vulnerability numbered CVE-2024-52911, affecting versions 0.14.1 to 28.4. Attackers can craft special blocks to remotely crash other nodes and execute code. The vulnerability was discovered and privately reported by developer Cory Fields in November 2024. The fix was merged in December 2024 and officially rolled out in the v29 version released in April 2025.

Currently, the last vulnerable version of the 28.x series ceased maintenance on April 19, 2026. However, since Bitcoin node upgrades are voluntary, it is estimated that approximately 43% of nodes are still running affected older versions, posing potential security risks.