CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zfnd: >> Zebra-Chain >> 3.1.0 Security Vulnerabilities

CVE-2026-34202

ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-chain version 6.0.1, a vulnerability in Zebra's transaction processing logic allows a remote, unauthenticated attacker to cause a Zebra node to panic (crash). This is triggered by sending a specially crafted V5 transaction that passes initial deserialization but fails during transaction ID calculation. This issue has been patched in zebrad version 4.3.0 and zebra-chain version 6.0.1.

CVSS Score

7.5

EPSS Score

0.002

Published

2026-03-31

Page 1

Vulnerabilities

Vulnerable Software

Zfnd: >> Zebra-Chain >> 3.1.0 Security Vulnerabilities

Products

Pricing

Contact Us