Severity by source
AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
Lifecycle Timeline
4DescriptionCVE.org
Zcash zcashd before 6.12.0 allows invalid transactions to be accepted under certain conditions, which potentially could have resulted in the draining of user funds from the Sprout pool. It was sometimes not verifying Sprout proofs.
AnalysisAI
Zcash zcashd before version 6.12.0 fails to properly verify Sprout zero-knowledge proofs under certain conditions, allowing authenticated attackers to submit invalid transactions that could drain funds from the Sprout shielded pool. The vulnerability requires authenticated access and complex conditions to exploit, resulting in a low CVSS score of 3.5 despite the potential financial impact. No public exploit code or active exploitation has been confirmed.
Technical ContextAI
Zcash zcashd is the reference implementation of the Zcash blockchain protocol. The Sprout shielded pool is an earlier privacy mechanism that uses zero-knowledge proofs (zk-SNARKs) to enable transactions without revealing sender, receiver, or amount. The vulnerability stems from incomplete or conditional validation of these cryptographic Sprout proofs during transaction acceptance, classified under CWE-358 (Improperly Restricted Operations on Dynamically Allocated Memory). This represents a gap in the consensus-critical proof verification logic that guards the integrity of shielded transactions.
RemediationAI
Upgrade zcashd to version 6.12.0 or later, which includes the corrected Sprout proof verification logic. The fix is available via the official Zcash release at https://github.com/zcash/zcash/releases/tag/v6.12.0 and is backed by the upstream commit db969c63f48f0f9fc518112ed0b7ace1af78b9d0. Node operators should prioritize this upgrade to restore full validation of Sprout transactions.
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-19126