Zcash · Zcash · CVE-2026-35679
Name of the Vulnerable Software and Affected Versions
Zcash versions prior to 6.12.0
Description
Zcash zcashd versions prior to 6.12.0 were susceptible to accepting invalid transactions under specific circumstances. This could have potentially led to the loss of user funds from the Sprout pool due to insufficient verification of Sprout proofs.
Recommendations
Update to version 6.12.0 or later.