CVE-2026-54496
Received
Received - Intake
Memory Corruption in ZEBRA Zcash Node
Vulnerability report for CVE-2026-54496, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-17
Last updated on: 2026-07-17
Assigner: GitHub, Inc.
Description
Description
ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad 5.0.0, halo2_gadgets 0.5.0, orchard 0.14.0, zcash_primitives 0.28.0, and zcashd 6.20.0, the variable-base scalar multiplication gadget in halo2_gadgets/src/ecc/chip/mul/incomplete.rs used assign_advice() for the base point without a copy constraint tying it to the actual base, allowing a malicious prover to produce a valid proof for an Orchard Action with an under-constrained base point and bypass the diversified-address-integrity check that binds pk_d, g_d, ivk, the nullifier (nf), and the spend validating key (ak) to the note being spent. This issue is fixed in zebrad 5.0.0, halo2_gadgets 0.5.0, orchard 0.14.0, zcash_primitives 0.28.0, and zcashd 6.20.0.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| zcashfoundation | zebrad | 5.0.0 |
| zcashfoundation | halo2_gadgets | 0.5.0 |
| zcashfoundation | orchard | 0.14.0 |
| zcashfoundation | zcash_primitives | 0.28.0 |
| zcash | zcashd | 6.20.0 |
| zebra | zebrad | 5.0.0 |
| halo2_gadgets | halo2_gadgets | 0.5.0 |
| orchard | orchard | 0.14.0 |
| zcash_primitives | zcash_primitives | 0.28.0 |
| zcashd | zcashd | 6.20.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-345 | The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data. |