MEDIUM 5.9

CVE-2026-46539: Nimiq BlockInclusionProof Logic Flaw Enables Forged Block Headers

Nimiq, a blockchain platform built on Rust, contains a flaw in how it verifies that transactions are genuinely included in a block. Under specific conditions—when checking a block at a particular position in the blockchain—the verification code skips its cryptographic checks entirely and simply approves the block as valid. An attacker could exploit this to forge fake block headers that would be accepted by the network without proper authentication, potentially allowing invalid transactions to be recorded on the blockchain.

Source data · NVD / CISA · public domain

CVSS
3.1 · 5.9 MEDIUM · CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Weaknesses (CWE)
CWE-345
Affected products
0 configuration(s)
Published / Modified
2026-06-10 / 2026-06-17

NVD description (verbatim)

Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, a logic flaw in BlockInclusionProof::is_block_proven causes the function to return true without performing any cryptographic verification when get_interlink_hops yields an empty hop list. This occurs when the target block is at the election block position immediately preceding the election head's epoch. An attacker providing transaction inclusion proofs can forge a MacroBlock header for that epoch position and have it accepted as "proven" without any hash or signature verification. This issue has been patched in version 1.4.0.

3 reference(s) · View on NVD →

SEC.co analysis · AI-assisted, reviewed against source

Technical summary

CVE-2026-46539 describes a logic flaw in the BlockInclusionProof::is_block_proven function within Nimiq's Albatross consensus implementation. When get_interlink_hops returns an empty list (occurring when the target block is positioned at the election block immediately preceding the election head's epoch), the function returns true without executing any cryptographic verification. This allows an attacker to forge MacroBlock headers for that epoch position, and these forged headers will be accepted as cryptographically proven despite lacking valid hash or signature verification. The vulnerability affects the proof-of-stake protocol's core validation layer.

Business impact

For Nimiq network participants and exchanges supporting the platform, this vulnerability could undermine transaction finality and block consensus. An attacker capable of forging block headers at specific epoch positions could introduce invalid transactions into the ledger, create forks, or double-spend assets. While the CVSS score reflects medium severity and exploitation requires specific network conditions, the integrity impact on a blockchain network is severe because it compromises the cryptographic guarantees that blockchain security rests upon. Users and custodians relying on Nimiq for value settlement face degraded assurance of transaction validity.

Affected systems

Nimiq versions prior to 1.4.0 are vulnerable. This includes all Nimiq nodes and clients running earlier versions that validate block proofs. Any service or exchange using Nimiq for transaction settlement or blockchain interaction is affected until upgraded. The vulnerability is specific to Nimiq's implementation and does not affect other blockchain platforms or consensus protocols.

Exploitability

Exploitation requires an attacker to construct a malicious transaction inclusion proof and trigger validation at the specific blockchain position where interlink hops are empty. This means exploitation is not trivial—it depends on precise timing relative to election block epochs and requires network-level access to propagate forged blocks. The CVSS vector (AC:H) reflects this elevated complexity, making attacks possible but not straightforward. However, once the conditions are met, no cryptographic material is needed; the proof is accepted purely by logic, making it deterministic if conditions align.

Remediation

Upgrade to Nimiq version 1.4.0 or later, which corrects the BlockInclusionProof::is_block_proven logic to perform cryptographic verification regardless of whether the interlink hop list is empty. All node operators and service providers should prioritize this patch to restore full proof validation integrity.

Patch guidance

Apply version 1.4.0 of Nimiq as soon as feasible. Review your deployment method (whether running from source, package managers, or container images) and follow Nimiq's official release documentation to ensure a clean upgrade. For production networks, coordinate upgrades across validator and full-node operators to prevent consensus splits during the transition. Verify that the upgraded version is genuinely 1.4.0 by checking release signatures and hashes against official Nimiq repositories.

Detection guidance

Monitor for rejected or suspicious MacroBlock headers during election block epochs, particularly at positions where block validation logs show no cryptographic verification steps executed. Review node consensus logs for forks or validation disputes at election boundaries. Implement monitoring for BlockInclusionProof validation calls; a high rate of accepted proofs with empty interlink hops in a short timeframe may indicate exploitation attempts. Network-level observation of block header propagation anomalies during epoch transitions can also surface attack attempts.

Why prioritize this

While the CVSS score is medium (5.9), the vulnerability targets the blockchain's consensus layer, where integrity failures have outsized consequences. The logic flaw is deterministic and does not require sophisticated cryptanalysis—it is a simple code path that bypasses validation. For any organization running Nimiq infrastructure, this should be treated as a high-priority integrity issue despite the moderate numerical score. The window of vulnerability is bounded to specific epoch positions, which limits attack surface but does not eliminate risk. Patch immediately if you operate Nimiq nodes or accept Nimiq transactions.

Risk score, explained

The CVSS 3.1 score of 5.9 (MEDIUM) reflects a network-accessible attack with no privileges required, but elevated complexity due to the need to trigger the vulnerability at the correct blockchain position. The integrity impact is high (forged blocks), but there is no confidentiality or availability impact in the classic sense—the attack does not leak data or crash nodes, it compromises transaction validity. From a blockchain-specific perspective, integrity compromise at the consensus layer warrants treating this as a critical business risk despite the numeric MEDIUM rating. Security teams should not anchor decisions solely on CVSS; context matters significantly.

Frequently asked questions

What exactly does 'empty interlink hops' mean and when does it occur?

In the Albatross consensus protocol, interlink hops are pointers to previous blocks used to prove a block's inclusion. An empty hop list occurs at a specific position in each epoch: when validating the election block that immediately precedes the current election head's epoch boundary. This is a rare but deterministic network state, making the vulnerability triggerable by an attacker with precise timing knowledge.

Can an attacker exploit this without running a Nimiq node themselves?

An attacker must have the ability to craft and propagate a forged MacroBlock header to the network. This typically requires some network access and node participation. However, once the malicious block is broadcast, any unpatched node will accept it without verification, making amplification across the network possible if the initial block reaches multiple peers.

If I upgrade to 1.4.0, am I fully protected?

Yes, version 1.4.0 restores proper cryptographic verification in BlockInclusionProof::is_block_proven, ensuring that all proofs are validated regardless of network state. After upgrading, forged blocks without valid signatures and hashes will be rejected.

Does this vulnerability affect other blockchains or just Nimiq?

This flaw is specific to Nimiq's Rust implementation of the Albatross protocol. It does not affect Bitcoin, Ethereum, or other blockchain platforms. However, other Proof-of-Stake networks with similar consensus designs should review their own interlink or proof-of-inclusion logic for similar issues.

This analysis is provided for informational purposes to support vulnerability management and risk assessment. It does not constitute professional security advice or endorsement of any particular remediation approach. Organizations should validate all technical claims, patch versions, and guidance against official vendor advisories and their own environmental testing. The vulnerability details and patch information are based on CVE-2026-46539 as published; refer to the official Nimiq security advisory for authoritative guidance. Exploit code or weaponized proof-of-concept is not provided and should not be developed for production systems. SEC.co assumes no liability for decisions made based on this analysis. Source: NVD (public-domain), retrieved 2026-07-19. Analysis generated by SEC.co (claude-haiku-4-5).