VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
Castle Finance developer Charlie You discovered a critical vulnerability in Solana's ecological lending protocol, Jet Protocol, that could allow attackers to withdraw tokens from arbitrary accounts. It is reported that Charlie You was discovered in January this year, but it has existed since the code update on December 15, 2021. Charlie You said that the vulnerability may cause up to 20 million US dollars in financial losses. For now, the Jet Protocol team has fixed it. Attack method (per SlowMist): Contract Vulnerability. Reported loss: -.
Sourced from
slowmist
Technical record
- chain
- solana
- protocol
- Jet Protocol
- bug_class
- logic
- date_occurred
- 2022-03-30
- loss_usd
- —
- source_id
- sm:jet-protocol::2022-03-30
Related — same bug class· logic