Security

Yearn Finance yETH Pool Drained Exploiting Cached Storage Arithmetic Flaw

A critical failure in state transition logic allowed a minimal 16 wei deposit to mint infinite tokens, leading to a $9 million loss via arithmetic overvaluation.
December 6, 20253 min

A pristine white structural framework encapsulates a dynamic core of interconnected blue and transparent crystalline blocks. These elements, reminiscent of blockchain data blocks, appear to be in a state of active transaction processing and on-chain data aggregation
A white, textured sphere rests within a dynamic, translucent blue, fluid-like structure, set against a light grey background. The blue form exhibits complex ripples and varying opacities, appearing to cradle the sphere

Briefing

The Yearn Finance yETH Stableswap pool was subjected to a critical logic exploit resulting in the theft of approximately $9 million in underlying assets. The attack vector leveraged a flaw in the contract’s internal accounting, specifically the state management of cached virtual balances, which permitted the attacker to mint an astronomical number of pool tokens. This was achieved with an initial deposit of only 16 wei, demonstrating one of the most capital-efficient exploits in decentralized finance history.

A close-up view reveals a transparent blue module, resembling a core blockchain protocol component, interacting with a bubbly, agitated liquid. Its visible internal mechanisms suggest an active transaction execution engine, while metallic rings could represent critical staking pool gateways or oracle network feeds

Context

The prevailing risk in complex DeFi protocols often resides in non-standard or legacy contract implementations that attempt to optimize for gas efficiency. In this instance, the pool utilized a custom stableswap logic, distinct from other protocol products, that employed cached storage variables to reduce transaction costs. This architectural choice introduced a critical, non-obvious attack surface where the system’s external state could diverge from its internal, cached state.

A transparent, cylindrical apparatus with internal blue elements and metallic supports is partially covered in white foam, suggesting active processing. The image showcases a complex system, highlighting its intricate internal workings and external activity, providing a glimpse into its operational state

Analysis

The attack was executed by first manipulating the pool’s internal state through a series of flash-loaned deposit and withdrawal cycles, deliberately accumulating phantom balances in the packed_vbs cached storage array. The attacker then drained all remaining liquidity, which correctly reset the main token supply to zero but critically failed to clear the accumulated values in the cached storage. This “zero supply” condition triggered the contract’s logic for the “first-ever deposit” upon the attacker’s final 16 wei transaction. The contract then calculated the value of this minimal deposit by referencing the uncleared, highly inflated phantom balances in the cached storage, leading to the minting of 235 septillion yETH tokens that were subsequently redeemed for the underlying assets.

A detailed, close-up view shows a light blue, textured surface forming a deep, circular indentation. A spherical object resembling a full moon floats centrally above this void, symbolizing a digital asset experiencing significant price action or 'mooning' within the DeFi landscape

Parameters

  • Key Metric → $9 Million → The total estimated value of underlying assets drained from the yETH Stableswap pool.
  • Attack Cost → 16 wei → The minimal amount of cryptocurrency deposited to trigger the infinite token minting exploit.
  • Vulnerability Type → Cached Storage Flaw → A logic error where internal state variables ( packed_vbs ) were not reset upon a full withdrawal.
  • Minted Tokens → 235 Septillion yETH → The astronomical number of tokens minted due to the arithmetic overvaluation.

A translucent blue device with a smooth, rounded form factor is depicted against a light grey background. Two clear, rounded protrusions, possibly interactive buttons, and a dark rectangular insert are visible on its surface

Outlook

Immediate mitigation requires all protocols utilizing custom stableswap or gas-optimized logic with cached state variables to undergo an emergency review and formal verification for state transition completeness. The incident underscores the systemic risk of complex, non-standard arithmetic in liquidity pools, especially concerning edge cases like zero-supply conditions. New security best practices will likely mandate explicit, mandatory storage clearing functions or formal proofs for all state-dependent variables, reinforcing the need for rigorous handling of non-happy-path execution flows.

The image displays a detailed view of a futuristic device, highlighting a circular port filled with illuminated blue crystalline elements and surrounded by white, frosty material. Modular white and dark grey components make up the device's exterior, suggesting complex internal mechanisms

Verdict

This exploit serves as a definitive case study on the catastrophic risk posed by subtle state management flaws in gas-optimized smart contract logic, proving that arithmetic edge cases remain a primary vector for total asset loss.

state transition logic, cached storage flaw, virtual balance manipulation, arithmetic overvaluation, minimal deposit exploit, infinite token minting, stableswap pool vulnerability, on-chain forensic analysis, gas optimization risk, zero supply condition, uninitialized storage variable, defi protocol exploit, smart contract security, re-entrancy vector, liquidity pool drain, decentralized finance risk, ethereum smart contract, critical vulnerability, post-mortem analysis, phantom balance attack Signal Acquired from → checkpoint.com

Micro Crypto News Feeds

decentralized finance

Definition ∞ Decentralized finance, often abbreviated as DeFi, is a system of financial services built on blockchain technology that operates without central intermediaries.

cached storage variables

Definition ∞ Cached storage variables refer to data elements temporarily held in a faster access memory layer, rather than directly retrieved from the primary, slower blockchain storage.

liquidity

Definition ∞ Liquidity refers to the degree to which an asset can be quickly converted into cash or another asset without significantly affecting its market price.

stableswap pool

Definition ∞ A stableswap pool is a type of liquidity pool in decentralized finance (DeFi) specifically designed to facilitate efficient exchanges between pegged assets, such as stablecoins or wrapped tokens.

infinite token minting

Definition ∞ Infinite token minting is a critical vulnerability in a digital asset's smart contract that allows an attacker or unauthorized entity to create an unlimited supply of new tokens.

vulnerability

Definition ∞ A vulnerability refers to a flaw or weakness in a system, protocol, or smart contract that could be exploited by malicious actors to compromise its integrity, security, or functionality.

tokens

Definition ∞ Tokens are digital units of value or utility that are issued on a blockchain and represent an asset, a right, or access to a service.

state transition

Definition ∞ A State Transition refers to the change from one state to another within a system, particularly in the context of computational processes or data structures.

state management

Definition ∞ State management refers to the process of controlling and organizing the dynamic data or conditions of a system or application.

Tags:

Tags: