Variable-Base Scalar Multiplication Vulnerability in ZEBRA by Zcash Foundation
CVE-2026-54496

9.3CRITICAL

Key Information:

Vendor
CVE Published:
17 July 2026

What is CVE-2026-54496?

The ZEBRA implementation prior to the specified versions contains a security vulnerability in its handling of variable-base scalar multiplication. The flaw occurs in the halo2_gadgets component, which allows a malicious actor to generate valid proof for Orchard Actions using an under-constrained base point, thereby bypassing critical integrity checks. This compromise enables potential exploitation of the transactional privacy mechanisms, urging users to upgrade to the latest versions for enhanced security guarantees.

Affected Version(s)

halo2_gadgets < 0.5.0

librustzcash < 0.28.0

orchard < 0.14.0

References

CVSS V3.1

Score:
9.3
Severity:
CRITICAL
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.