ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-consensus version 5.0.1, a logic error in Zebra's transaction verification cache could allow a malicious miner to induce a consensus split. By matching a valid transaction's txid while providing invalid authorization data, a miner could cause vulnerable Zebra nodes to accept an invalid block, leading to a consensus split from the rest of the Zcash network.
This would not allow invalid transactions to be accepted but could result in a consensus split between vulnerable Zebra nodes and invulnerable Zebra and Zcashd nodes. This issue has been patched in zebrad version 4.3.0 and zebra-consensus version 5.0.1.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
High
Admin privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
None
No data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service
CVSS Vector v4.0
Weakness Type (CWE)
Vulnerable Products 2
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Zfnd Zebra
cpe:2.3:a:zfnd:zebra:*:*:*:*:*:rust:*:*
|
— |
4.3.0
|
|
Zfnd Zebra-Consensus
cpe:2.3:a:zfnd:zebra-consensus:*:*:*:*:*:rust:*:*
|
— |
5.0.1
|
References 3
https://github.com/ZcashFoundation/zebra/releases/tag/v4.3.0
security-advisories@github.com
https://github.com/ZcashFoundation/zebra/security/advisories/GHSA-3vmh-33xr-9cqh
security-advisories@github.com
https://zfnd.org/zebra-4-3-0-critical-security-fixes-zip-235-support-and-perfor…
security-advisories@github.com