CVE-2026-40583

Description

UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, nonce, and balance prechecks, but fails authorization only after state mutation has already occurred.

CVSS v3.1 Score

8.2

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

EPSS — Exploit Prediction

0.0006

Probability of exploitation

0.18%

Percentile rank

EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.

Weakness Type (CWE)

CWE-460 CWE-460

CWE-696 CWE-696

Affected Products

Vendor	Product	Versions
ultradag	ultradag	All

References

Advisories & Patches

https://github.com/UltraDAGcom/core/commit/2f5a3a237ea519b48d71e6e3093c89f60694c7be https://github.com/UltraDAGcom/core/commit/45bcf7064741897319b6196d3d9f9e1307093511 https://github.com/UltraDAGcom/core/security/advisories/GHSA-q8wx-2crx-c7pp https://github.com/UltraDAGcom/core/security/advisories/GHSA-q8wx-2crx-c7pp

Exploits

https://github.com/UltraDAGcom/core/security/advisories/GHSA-q8wx-2crx-c7pp https://github.com/UltraDAGcom/core/security/advisories/GHSA-q8wx-2crx-c7pp

Frequently Asked Questions

What is CVE-2026-40583? +

UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, nonce, and balance prechecks, but fails authorization only after state mutation has already occurred. It has a CVSS v3.1 base score of 8.2 (HIGH).

How severe is CVE-2026-40583? +

CVE-2026-40583 has a CVSS v3.1 score of 8.2 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching. The EPSS score is 0.0006, placing it in the 0th percentile for exploitation probability.

What products are affected by CVE-2026-40583? +

CVE-2026-40583 affects products from ultradag, specifically: ultradag. Check the affected products table above for specific version ranges.

How do I check if I'm vulnerable to CVE-2026-40583? +

You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2024-0316 6.8

Improper cleanup vulnerability in exceptions thrown in FireEye Endpoint Security, affecting version 5.2.0.958244. This vulnerability could allow an attacker to …

CVE-2025-30157 6.5

Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and 1.30.10, Envoy's ext_proc HTTP filter is at …

CVE-2025-32439 6.5

pleezer is a headless Deezer Connect player. Hook scripts in pleezer can be triggered by various events like track changes …

CVE-2024-12289 5.9

Boundary Community Edition and Boundary Enterprise (“Boundary”) incorrectly handle HTTP requests during the initialization of the Boundary controller, which may …

CVE-2024-20354 4.7

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP) Software could allow an unauthenticated, …

CVE-2025-59399 3.1

libocpp before 0.28.0 allows a denial of service (EVerest crash) because a secondary exception is thrown during error message generation.