A critical vulnerability in Zcash node software could have allowed attackers to drain millions of dollars of ZEC from a deprecated shielded pool.
Zcash Vulnerability That Put Millions of Dollars of ZEC at Risk Has Been Fixed
A critical vulnerability in Zcash node software (CVE-2022-29175) allowed attackers to exploit a deprecated shielded pool to drain millions of dollars in ZEC. The flaw impacted Zcash versions prior to 4.6.0-1, potentially exposing users to loss of funds if unpatched.