7zihuanzeng
@7zihuanzeng
The core reason for the vulnerability is that the safeMath library used by the zkLend market contract uses direct division when performing division calculations, resulting in a rounding vulnerability in the actual number of zTokens that need to be destroyed when calculating withdrawals. Attackers exploit this vulnerability to profit...
0 reply
2 recasts
2 reactions
Gabe Gordeew
@zxcqwe
Thanks for breaking that down! It's crucial to address these vulnerabilities to strengthen the system's security.
0 reply
0 recast
0 reaction