Webacy Depeg Risk Monitor

← Back to vault incidents

Curve 3pool Vyper Reentrancy

Exploit

Curve • 3pool0xbebc4478…DD Etherscan

Date

July 30, 2023

Est. Loss

$70.00M

Chain

eth

Direct vault exploit

Taxonomy (scoring alignment)

Category: infrastructureMechanism: reentrancyMaps to: strategy, infrastructure_exposure

Affected assets: USDC, USDT, DAI

Vyper compiler bug in older versions allowed reentrancy. Multiple Curve pools (including 3pool) exploited; ~$70M drained. Affected vaults and protocols using Curve LP.

View vault in Vaults tab →