CVE-2026-35679
3.5 LOWZcash zcashd before 6.12.0 allows invalid transactions to be accepted under certain conditions, which potentially could have resulted in ...
Published: 2026-04-05 · Last updated: 2026-05-19
Severity and scoring
- CVSS
- 3.5 LOW
- Vector
- CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
- CWE
- CWE-358
Description
Zcash zcashd before 6.12.0 allows invalid transactions to be accepted under certain conditions, which potentially could have resulted in the draining of user funds from the Sprout pool. It was sometimes not verifying Sprout proofs.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-11127 — Inappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain sp... (6.5 MEDIUM)
- CVE-2026-11122 — Inappropriate implementation in Keyboard in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or... (6.1 MEDIUM)
- CVE-2026-44475 — Ella Core is a 5G core designed for private networks (6.1 MEDIUM)
- CVE-2026-44474 — Ella Core is a 5G core designed for private networks (3.7 LOW)
- CVE-2026-44473 — Ella Core is a 5G core designed for private networks (7.1 HIGH)