CVE-2026-35679

CVSS v3.1

3.5

Low

AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

Zcash zcashd before 6.12.0 allows invalid transactions to be accepted under certain conditions, which potentially could have resulted in the draining of user funds from the Sprout pool. It was sometimes not verifying Sprout proofs.

Fix

Improperly Implemented Security Check for Standard

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-358

Related Identifiers

CVE-2026-35679

Affected Products

Zcashd

CVE-2026-35679

Weakness Enumeration

Related Identifiers

Affected Products

References · 3