Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ZcashFoundation — Vulnerabilities & Security Advisories 12

Browse all 12 CVE security advisories affecting ZcashFoundation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The ZcashFoundation develops Zcash, a privacy-focused cryptocurrency using zero-knowledge proofs. Historically, its codebase has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, as evidenced by five disclosed CVEs. While no major security incidents have been publicly reported, the project's emphasis on privacy necessitates rigorous cryptographic assurance. The foundation maintains a bug bounty program to identify vulnerabilities, though the complexity of its privacy features presents ongoing security challenges. Regular audits and community scrutiny remain critical to maintaining trust in the network's integrity and user funds.

Top products by ZcashFoundation: zebra zebrad frost
CVE IDTitleCVSSSeverityPublished
CVE-2026-44499 ZEBRA: Permanent Block Discovery Halt via Gossip Queue Saturation and Syncer Poisoning — zebraCWE-770 7.5AIHighAI2026-05-08
CVE-2026-44500 ZEBRA: Allocation Amplification in Inbound Network Deserializers — zebraCWE-770 5.3 Medium2026-05-08
CVE-2026-44498 ZEBRA: Block Validator Undercounts Coinbase and P2SH Sigops — zebraCWE-682 5.3AIMediumAI2026-05-08
CVE-2026-44497 ZEBRA: Consensus Divergence in Transparent Sighash Hash-Type Handling due to Stale Buffer — zebraCWE-347 9.1AICriticalAI2026-05-08
CVE-2026-41585 ZEBRA: Denial of Service via Interrupted JSON-RPC Requests from Authenticated Clients — zebraCWE-248 6.5AIMediumAI2026-05-08
CVE-2026-41584 ZEBRA: rk Identity Point Panic in Transaction Verification — zebraCWE-617 7.5AIHighAI2026-05-08
CVE-2026-41583 ZEBRA: Consensus Divergence in Transparent Sighash Hash-Type Handling — zebraCWE-573 7.5AIHighAI2026-05-08
CVE-2026-40881 Zebra: addr/addrv2 Deserialization Resource Exhaustion — zebradCWE-770 9.8AICriticalAI2026-04-21
CVE-2026-40880 Zebra: Cached Mempool Verification Bypasses Consensus Rules for Ahead-of-Tip Blocks — zebradCWE-1025 7.5AIHighAI2026-04-21
CVE-2026-34377 Zebra has a Consensus Failure due to Improper Verification of V5 Transactions — zebraCWE-347 7.5AIHighAI2026-03-31
CVE-2026-34202 Zebra node crash — V5 transaction hash panic (P2P reachable) — zebraCWE-1336 7.5AIHighAI2026-03-31
CVE-2025-58359 frost-core: refresh shares with smaller min_signers will reduce group security — frostCWE-325 6.5AIMediumAI2025-09-04

This page lists every published CVE security advisory associated with ZcashFoundation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.