Security

Yearn Finance yETH Pool Drained Exploiting Cached Storage Arithmetic Flaw

A critical failure in state transition logic allowed a minimal 16 wei deposit to mint infinite tokens, leading to a $9 million loss via arithmetic overvaluation.
December 6, 20253 min

The image displays vibrant blue crystalline formations, partially covered in white, snow-like granular material, intersected by polished silver rods. Several transparent, reflective spheres float around these structures, some resting on the white substance
A sleek, silver-framed device features a large, faceted blue crystal on one side and an exposed mechanical watch movement on the other, resting on a light grey surface. The crystal sits above a stack of coins, while the watch mechanism is integrated into a dark, recessed panel

Briefing

The Yearn Finance yETH Stableswap pool was subjected to a critical logic exploit resulting in the theft of approximately $9 million in underlying assets. The attack vector leveraged a flaw in the contract’s internal accounting, specifically the state management of cached virtual balances, which permitted the attacker to mint an astronomical number of pool tokens. This was achieved with an initial deposit of only 16 wei, demonstrating one of the most capital-efficient exploits in decentralized finance history.

A white and blue football, appearing textured with snow or ice, is partially submerged in deep blue, rippling water. Visible are its distinct geometric panels, some frosted white and others glossy blue, linked by metallic silver lines

Context

The prevailing risk in complex DeFi protocols often resides in non-standard or legacy contract implementations that attempt to optimize for gas efficiency. In this instance, the pool utilized a custom stableswap logic, distinct from other protocol products, that employed cached storage variables to reduce transaction costs. This architectural choice introduced a critical, non-obvious attack surface where the system’s external state could diverge from its internal, cached state.

A sleek, futuristic device, predominantly silver-toned with brilliant blue crystal accents, is depicted resting on a smooth, reflective grey surface. A circular window on its top surface offers a clear view into a complex mechanical watch movement, showcasing intricate gears and springs

Analysis

The attack was executed by first manipulating the pool’s internal state through a series of flash-loaned deposit and withdrawal cycles, deliberately accumulating phantom balances in the packed_vbs cached storage array. The attacker then drained all remaining liquidity, which correctly reset the main token supply to zero but critically failed to clear the accumulated values in the cached storage. This “zero supply” condition triggered the contract’s logic for the “first-ever deposit” upon the attacker’s final 16 wei transaction. The contract then calculated the value of this minimal deposit by referencing the uncleared, highly inflated phantom balances in the cached storage, leading to the minting of 235 septillion yETH tokens that were subsequently redeemed for the underlying assets.

A transparent vessel filled with vibrant blue liquid and numerous effervescent bubbles rests within a meticulously crafted metallic and dark blue housing. The dynamic interplay of the fluid and bubbles visually articulates complex operational processes, suggesting contained, high-performance activity

Parameters

  • Key Metric → $9 Million → The total estimated value of underlying assets drained from the yETH Stableswap pool.
  • Attack Cost → 16 wei → The minimal amount of cryptocurrency deposited to trigger the infinite token minting exploit.
  • Vulnerability Type → Cached Storage Flaw → A logic error where internal state variables ( packed_vbs ) were not reset upon a full withdrawal.
  • Minted Tokens → 235 Septillion yETH → The astronomical number of tokens minted due to the arithmetic overvaluation.

A detailed, close-up view shows a light blue, textured surface forming a deep, circular indentation. A spherical object resembling a full moon floats centrally above this void, symbolizing a digital asset experiencing significant price action or 'mooning' within the DeFi landscape

Outlook

Immediate mitigation requires all protocols utilizing custom stableswap or gas-optimized logic with cached state variables to undergo an emergency review and formal verification for state transition completeness. The incident underscores the systemic risk of complex, non-standard arithmetic in liquidity pools, especially concerning edge cases like zero-supply conditions. New security best practices will likely mandate explicit, mandatory storage clearing functions or formal proofs for all state-dependent variables, reinforcing the need for rigorous handling of non-happy-path execution flows.

A central metallic protocol mechanism, intricately designed with visible apertures, is depicted surrounded by a dynamic, luminous blue fluid. This fluid, resembling a liquidity pool, exhibits flowing motion, highlighting the metallic component's precision engineering

Verdict

This exploit serves as a definitive case study on the catastrophic risk posed by subtle state management flaws in gas-optimized smart contract logic, proving that arithmetic edge cases remain a primary vector for total asset loss.

state transition logic, cached storage flaw, virtual balance manipulation, arithmetic overvaluation, minimal deposit exploit, infinite token minting, stableswap pool vulnerability, on-chain forensic analysis, gas optimization risk, zero supply condition, uninitialized storage variable, defi protocol exploit, smart contract security, re-entrancy vector, liquidity pool drain, decentralized finance risk, ethereum smart contract, critical vulnerability, post-mortem analysis, phantom balance attack Signal Acquired from → checkpoint.com

Micro Crypto News Feeds

decentralized finance

Definition ∞ Decentralized finance, often abbreviated as DeFi, is a system of financial services built on blockchain technology that operates without central intermediaries.

cached storage variables

Definition ∞ Cached storage variables refer to data elements temporarily held in a faster access memory layer, rather than directly retrieved from the primary, slower blockchain storage.

liquidity

Definition ∞ Liquidity refers to the degree to which an asset can be quickly converted into cash or another asset without significantly affecting its market price.

stableswap pool

Definition ∞ A stableswap pool is a type of liquidity pool in decentralized finance (DeFi) specifically designed to facilitate efficient exchanges between pegged assets, such as stablecoins or wrapped tokens.

infinite token minting

Definition ∞ Infinite token minting is a critical vulnerability in a digital asset's smart contract that allows an attacker or unauthorized entity to create an unlimited supply of new tokens.

vulnerability

Definition ∞ A vulnerability refers to a flaw or weakness in a system, protocol, or smart contract that could be exploited by malicious actors to compromise its integrity, security, or functionality.

tokens

Definition ∞ Tokens are digital units of value or utility that are issued on a blockchain and represent an asset, a right, or access to a service.

state transition

Definition ∞ A State Transition refers to the change from one state to another within a system, particularly in the context of computational processes or data structures.

state management

Definition ∞ State management refers to the process of controlling and organizing the dynamic data or conditions of a system or application.

Tags:

Tags: