Curve Finance pools exploited in over $24M due to reentrancy vulnerability

  • 📰 Cointelegraph
  • ⏱ Reading Time:
  • 21 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 12%
  • Publisher: 51%

Business News News

Business Business Latest News,Business Business Headlines

According to Vyper, versions 0.2.15, 0.2.16 and 0.3.0 are vulnerable to malfunctioning reentrancy locks.

According to initial investigation, some versions of the Vyper compiler do not correctly implement the reentrancy guard, which prevents multiple functions from being executed at the same time by locking a contract. Reentrancy attacks can potentially drain all funds from a contract.

A number of decentralized finance projects were affected by the attack. Decentralized exchange Ellipsisthat a small number of stable pools with BNB were exploited using an old Vyper compiler. Alchemix also witnessed $13.6 million outflow, along with $11.4 million exploited on JPEGd’s. Certain type of Curve factory pool is encountering read-only reentrancy attack and causing a total loss of $11m(

 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.

Several stable pools on Curve Finance were exploited on July 30, with losses reaching $24 million. According to Vyper, its 0.2.15, 0.2.16, and 0.3.0 versions are vulnerable to malfunctioning reentrancy locks, leaving projects relying on these versions exposed to potential risks.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 562. in BUSİNESS

Business Business Latest News, Business Business Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Curve Finance factory pools targeted due to reentrancy vulnerabilityFactory pools on Curve Finance faced a reentrancy vulnerability, a security flaw allowing potential funds drain from interrupted contract calls.
Source: TheBlock__ - 🏆 464. / 53 Read more »

Another week of DeFi hacks, but ZK-proof development heats up: Finance RedefinedThe past week in DeFi was dominated by hacks costing almost $39 million, but ZK-rollup development continues to heat up.
Source: Cointelegraph - 🏆 562. / 51 Read more »

India lets firms list on Modi's flagship finance hub to draw foreign capitalIndia has allowed its firms to list on exchanges registered in a new financial hub in the western state of Gujarat, Finance Minister Nirmala Sitharaman said on Friday, to give companies access to easier and cheaper foreign capital.
Source: Reuters - 🏆 2. / 97 Read more »