ChainCatcher message, the National Institute of Standards and Technology (NIST) website shows that Bitcoin inscriptions have been added to the National Vulnerability Database, with the identifier CVE-2023-50428. This vulnerability is currently awaiting analysis.NIST describes the vulnerability as the ability to bypass data carrier size limits in Bitcoin nodes prior to the upgrade of Bitcoin Core to 26.0 and Bitcoin Knots to 25.1.knots20231115 by obfuscating data into code (for example, using OP_FALSE OP_IF). Inscriptions from 2022 and 2023 exploited these vulnerabilities.

ChainCatcher news, Bitcoin Core developer Luke Dashjr posted on platform X that the "inscriptions" exploit has been assigned the identifier CVE-2023-50428 due to a vulnerability in the Bitcoin Core client.Previously reported, Luke Dashjr indicated that inscriptions are exploiting a vulnerability in the Bitcoin Core client to send spam to the blockchain. Since 2013, Bitcoin Core has allowed users to set an additional data size limit ('-datacarriersize') when forwarding or mining transactions. Inscriptions bypassed this limit by disguising their data as program code.