NRDAX
Submit

← registry

NRDAX-T0148 - Malformed KZG Proof Mismatch DoS

compute_amp · active · first seen 2026-07-07

provenance: Reproduced in NullRabbit's attack-reproduction pipeline

mechanism

CVE-2026-22868 (CVSS 7.5): a batch of EIP-4844 type-3 blob txs announced then delivered (PooledTransactions) with structurally-valid KZG sidecars whose commitment/proof (over blob A) mismatch the carr

instances (1)

chainprimitivefidelityoriginreproducer (bundle)source
ethereum geth_blob_kzg_dos lab reverse-engineered-cve geth_blob_kzg_dos https://github.com/ethereum/go-ethereum/security/advisories/GHSA-mq3p-rrmp-79jg ↗

related (compute_amp)

cite

https://nrdax.com/techniques/NRDAX-T0148

plain

NRDAX Registry. Technique NRDAX-T0148.

bibtex
@misc{nrdax_NRDAX_T0148,
  title = {Malformed KZG Proof Mismatch DoS (NRDAX-T0148)},
  howpublished = {NRDAX Registry},
  url = {https://nrdax.com/techniques/NRDAX-T0148},
}
json (csl)
{
  "id": "nrdax-NRDAX-T0148",
  "type": "dataset",
  "title": "Malformed KZG Proof Mismatch DoS (NRDAX-T0148)",
  "URL": "https://nrdax.com/techniques/NRDAX-T0148",
  "publisher": "NRDAX Registry"
}