Description
Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a consistency check, and consequently transform the proof of one statement into an ostensibly valid proof of a different statement, thereby breaking the soundness of the proof system. This misled the original Sprout zk-SNARK verifier into accepting the correctness of a transaction.
References (3)
Core 3
Core References
Press/Media Coverage, Third Party Advisory x_refsource_misc
http://fortune.com/2019/02/05/zcash-vulnerability-cryptocurrency/
Vendor Advisory x_refsource_misc
https://z.cash/blog/zcash-counterfeiting-vulnerability-successfully-remediated/
Scores
CVSS v3
7.5
EPSS
0.0048
EPSS Percentile
65.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-754
Status
published
Products (1)
z.cash/zcash
< 2.0.1
Published
Mar 27, 2019
Tracked Since
Feb 18, 2026