Security

Yearn Finance yETH Pool Drained Exploiting Cached Storage Arithmetic Flaw

A critical failure in state transition logic allowed a minimal 16 wei deposit to mint infinite tokens, leading to a $9 million loss via arithmetic overvaluation.
December 6, 20253 min

A white, rectangular, modular device with visible ports and connections extends into a vibrant, glowing blue crystalline structure, which is composed of numerous small, luminous spheres and interspersed with frosty textures. The background shows a blurred continuation of similar blue and white elements, suggesting a complex digital environment
The image presents a detailed view of a transparent blue mechanical structure, featuring a central circular element and intricate internal metallic components. The translucent material reveals complex engineering, with lighter blue highlights emphasizing its sculpted forms

Briefing

The Yearn Finance yETH Stableswap pool was subjected to a critical logic exploit resulting in the theft of approximately $9 million in underlying assets. The attack vector leveraged a flaw in the contract’s internal accounting, specifically the state management of cached virtual balances, which permitted the attacker to mint an astronomical number of pool tokens. This was achieved with an initial deposit of only 16 wei, demonstrating one of the most capital-efficient exploits in decentralized finance history.

The image displays vibrant blue crystalline formations, partially covered in white, snow-like granular material, intersected by polished silver rods. Several transparent, reflective spheres float around these structures, some resting on the white substance

Context

The prevailing risk in complex DeFi protocols often resides in non-standard or legacy contract implementations that attempt to optimize for gas efficiency. In this instance, the pool utilized a custom stableswap logic, distinct from other protocol products, that employed cached storage variables to reduce transaction costs. This architectural choice introduced a critical, non-obvious attack surface where the system’s external state could diverge from its internal, cached state.

Intricate metallic rings are intertwined with vibrant blue, granular structures, partially covered in a frosty white texture, with a central, textured white orb suspended within. The composition evokes a sense of complex, interconnected systems and advanced technological processes

Analysis

The attack was executed by first manipulating the pool’s internal state through a series of flash-loaned deposit and withdrawal cycles, deliberately accumulating phantom balances in the packed_vbs cached storage array. The attacker then drained all remaining liquidity, which correctly reset the main token supply to zero but critically failed to clear the accumulated values in the cached storage. This “zero supply” condition triggered the contract’s logic for the “first-ever deposit” upon the attacker’s final 16 wei transaction. The contract then calculated the value of this minimal deposit by referencing the uncleared, highly inflated phantom balances in the cached storage, leading to the minting of 235 septillion yETH tokens that were subsequently redeemed for the underlying assets.

The image presents a detailed, abstract view of an intricate, translucent blue and white crystalline structure, heavily textured with a frosty, granular coating. This central, intersecting network element is sharply focused against a soft, dark background, highlighting its complex internal pathways and components

Parameters

  • Key Metric → $9 Million → The total estimated value of underlying assets drained from the yETH Stableswap pool.
  • Attack Cost → 16 wei → The minimal amount of cryptocurrency deposited to trigger the infinite token minting exploit.
  • Vulnerability Type → Cached Storage Flaw → A logic error where internal state variables ( packed_vbs ) were not reset upon a full withdrawal.
  • Minted Tokens → 235 Septillion yETH → The astronomical number of tokens minted due to the arithmetic overvaluation.

A close-up view reveals a polished, metallic object, possibly a hardware wallet, partially encased within a vibrant blue, translucent framework. The entire structure is visibly covered in a layer of white frost, creating a striking contrast and suggesting extreme cold

Outlook

Immediate mitigation requires all protocols utilizing custom stableswap or gas-optimized logic with cached state variables to undergo an emergency review and formal verification for state transition completeness. The incident underscores the systemic risk of complex, non-standard arithmetic in liquidity pools, especially concerning edge cases like zero-supply conditions. New security best practices will likely mandate explicit, mandatory storage clearing functions or formal proofs for all state-dependent variables, reinforcing the need for rigorous handling of non-happy-path execution flows.

A futuristic, metallic sphere adorned with the Ethereum logo is centrally positioned on a complex, blue-lit circuit board landscape. The sphere features multiple illuminated facets displaying the distinct Ethereum symbol, surrounded by intricate mechanical and electronic components, suggesting advanced computational power

Verdict

This exploit serves as a definitive case study on the catastrophic risk posed by subtle state management flaws in gas-optimized smart contract logic, proving that arithmetic edge cases remain a primary vector for total asset loss.

state transition logic, cached storage flaw, virtual balance manipulation, arithmetic overvaluation, minimal deposit exploit, infinite token minting, stableswap pool vulnerability, on-chain forensic analysis, gas optimization risk, zero supply condition, uninitialized storage variable, defi protocol exploit, smart contract security, re-entrancy vector, liquidity pool drain, decentralized finance risk, ethereum smart contract, critical vulnerability, post-mortem analysis, phantom balance attack Signal Acquired from → checkpoint.com

Micro Crypto News Feeds

decentralized finance

Definition ∞ Decentralized finance, often abbreviated as DeFi, is a system of financial services built on blockchain technology that operates without central intermediaries.

cached storage variables

Definition ∞ Cached storage variables refer to data elements temporarily held in a faster access memory layer, rather than directly retrieved from the primary, slower blockchain storage.

liquidity

Definition ∞ Liquidity refers to the degree to which an asset can be quickly converted into cash or another asset without significantly affecting its market price.

stableswap pool

Definition ∞ A stableswap pool is a type of liquidity pool in decentralized finance (DeFi) specifically designed to facilitate efficient exchanges between pegged assets, such as stablecoins or wrapped tokens.

infinite token minting

Definition ∞ Infinite token minting is a critical vulnerability in a digital asset's smart contract that allows an attacker or unauthorized entity to create an unlimited supply of new tokens.

vulnerability

Definition ∞ A vulnerability refers to a flaw or weakness in a system, protocol, or smart contract that could be exploited by malicious actors to compromise its integrity, security, or functionality.

tokens

Definition ∞ Tokens are digital units of value or utility that are issued on a blockchain and represent an asset, a right, or access to a service.

state transition

Definition ∞ A State Transition refers to the change from one state to another within a system, particularly in the context of computational processes or data structures.

state management

Definition ∞ State management refers to the process of controlling and organizing the dynamic data or conditions of a system or application.

Tags:

Tags: