LogicalBreach Academy

Critical Deadlock Vulnerability in Monero RPC Leading to Complete Node Paralysis | Free Bug Bounty Writeup | LogicalBreach Academy

Writeups Cheatsheets Tools Collections Authors Noc Pricing

Back

OtherCVSS 10Insane

Critical Deadlock Vulnerability in Monero RPC Leading to Complete Node Paralysis

hackerone-reports

May 31, 2026

1 views

Save

€0

Vulnerability Summary

HackerOne disclosed report --> https://hackerone.com/reports/3307874 by rorkh

Summary:

A deadlock vulnerability in Monero's JSON-RPC interface allows a remote, unauthenticated attacker to completely paralyze any Monero node with a single HTTP request containing specific batch methods, leading to permanent denial of service.

Releases Affected:

Monero 'Fluorine Fermi' (v0.18.4.2-2987b7200)
Likely all previous versions
All operating systems (Linux, Windows, macOS)
All run modes (mainnet, testnet, offline, restricted-rpc)

Severity:

Identification Required

You must be logged in to read this writeup. Join our community of researchers today.

hackerone-reports

€14,023 Documented

Profile →

Related Writeups

hackerone-reports

HMAC signature verification omits endpoint and payload allowing request forgery on CoinMate API

HackerOne disclosed report --> https://hackerone.com/reports/3670955 by glferreira-devsecops

Read Writeup →

hackerone-reports

Out of scope: Improper Input Validation Order on /api-internal/login via password field leads to unnecessary resource consumption

HackerOne disclosed report --> https://hackerone.com/reports/3625600 by bereza4321

Read Writeup →

hackerone-reports

CVE-2026-7168: cross-proxy Digest auth state leak

HackerOne disclosed report --> https://hackerone.com/reports/3697719 by xkilua

Read Writeup →

Discussion

No comments yet.

Be the first to share your thoughts

Premium writeups about bug bounty hunting and web security.
Written by real security researchers.

Navigation

Writeups Cheatsheets Tools Authors Noc Pricing

Contactcontact@logicalbreach.com

RSS FeedPrivacy PolicyTerms of Service