What Happened

Curve Finance (Backtest: 2023-06-01)

$70M|Smart Contract Exploit|July 30, 2023

Vyper compiler reentrancy bug — multiple Curve pools using Vyper 0.2.15/0.2.16/0.3.0 were exploited due to a compiler bug in the reentrancy lock, allowing attackers to drain pools (alETH, msETH, pETH pools hit hardest)

What Hindenrank Would Have Said

As of June 1, 2023

B-
Risk Score
35/100

Moderate risk — strong track record and dominant market position in stablecoin trading are offset by single-language compiler dependency, novel untested mechanisms in crvUSD, and systemic concentration risk from founder's personal CRV loans.

Mechanism Novelty3/15
Interaction Severity12/20
Oracle Surface2/10
Documentation Quality2/10
Track Record3/15
Scale Exposure7/10
Regulatory Risk2/10
Protocol Vitality4/10

Scenario Predicted the Failure Mode

The B- grade (35/100) did not cross the D+ threshold for a high-risk flag. However, our collapse scenario analysis predicted the exact failure mode that occurred.

Flagged by dimensions: Interaction Severity, Scale Exposure

One or more collapse scenarios directly matched the actual failure mode.

Top Risks Identified

  1. 1.All Curve smart contracts are written exclusively in Vyper, creating a single-language compiler dependency. A compiler-level vulnerability could simultaneously affect multiple pools across the protocol, an unusual concentration risk compared to protocols using Solidity's more battle-tested toolchain.
  2. 2.Curve founder Michael Egorov holds approximately 47% of CRV supply as collateral for personal stablecoin loans across Aave and other lending protocols. A significant CRV price decline could trigger cascading liquidations that destabilize the CRV token and undermine the veCRV governance model.
  3. 3.crvUSD's novel LLAMMA soft-liquidation mechanism launched May 3, 2023 and has less than one month of production history. The mechanism converts collateral into LP positions during liquidation, creating complex dynamics that have not been tested through a major market stress event.
  4. 4.Concentration of veCRV voting power in meta-governance protocols (Convex controls ~50% of veCRV) creates governance capture risk where CRV emission direction is effectively controlled by a small number of external protocols.

Collapse Scenarios

Vyper Compiler Bug Causes Multi-Pool Exploit

Moderate
Trigger

A vulnerability is discovered in a Vyper compiler version (0.2.x or 0.3.x) used by deployed Curve pools, enabling re-entrancy or storage corruption attacks across multiple pools simultaneously

Cascade
1.
A compiler-level vulnerability in Vyper allows an attacker to bypass reentrancy guards in Curve pool contracts compiled with the affected versionMultiple Curve pools sharing the same Vyper compiler version become simultaneously exploitable, as the bug exists in the compiler output rather than the Vyper source code
2.
Attacker drains liquidity from affected StableSwap and CryptoSwap pools by exploiting the reentrancy vulnerabilityHundreds of millions in TVL across affected pools is at risk; LP token holders face immediate losses as pool reserves are drained
3.
CRV token price crashes as market reacts to the exploit, approaching Michael Egorov's loan liquidation thresholds across Aave and other lending protocolsEgorov's approximately 460M CRV collateral (47% of supply) faces liquidation, which would flood the market with CRV sell pressure
4.
Emergency DAO activates, killing gauges on affected pools, but the exploit has already occurred and fund recovery depends on attacker cooperationCRV emissions halt on affected pools, reducing incentives for remaining liquidity; crvUSD pools thin as LPs withdraw, threatening the stablecoin's peg
5.
Cascading liquidation of Egorov's CRV loans triggers bad debt across multiple lending protocols (Aave, Fraxlend, Abracadabra)DeFi contagion spreads beyond Curve as lending protocols absorb bad debt from CRV liquidations; veCRV governance model is undermined by token crash
Historical Precedent

The Vyper ecosystem is smaller and less battle-tested than Solidity/OpenZeppelin. Compiler bugs have historically been a category of smart contract risk (Solidity optimizer bugs in 2020-2021). The DNS hijack of Curve in August 2022 demonstrated that the protocol's infrastructure has been targeted before.

Founder CRV Liquidation Cascade Triggers DeFi Contagion

Moderate
Trigger

CRV token price drops below $0.40 sustained for 48+ hours due to market downturn, whale selling, or protocol-specific negative event, approaching Egorov's liquidation thresholds across lending platforms

Cascade
1.
Sustained CRV price decline pushes Egorov's Aave position (34% of CRV supply as collateral for approximately $63M in stablecoin loans) toward liquidation at approximately $0.37Market awareness of the approaching liquidation threshold creates additional selling pressure as traders front-run the expected liquidation event
2.
Fraxlend position hits utilization threshold, triggering exponential interest rate increase (doubling every 12 hours, potentially reaching 10,000%+ APY)Egorov faces rapidly compounding debt that forces immediate repayment or acceptance of liquidation, with insufficient liquid assets to service all positions simultaneously
3.
Liquidation bots begin selling CRV collateral on-chain, but thin liquidity means massive slippage; market absorbs only a fraction of the 460M CRV at current pricesCRV price enters death spiral as liquidation selling creates a feedback loop: lower price triggers more liquidations, which creates more selling
4.
Aave, Fraxlend, Abracadabra, and other lending protocols accumulate bad debt as CRV collateral sells well below loan valuesMultiple DeFi lending protocols face solvency stress from CRV bad debt, mirroring the Eisenberg attack dynamics but at much larger scale
5.
veCRV governance model collapses as CRV token becomes near-worthless, removing economic incentive for gauge voting and liquidity provisionCurve TVL rapidly declines as liquidity providers withdraw without CRV emission incentives; crvUSD faces existential depeg risk as pool liquidity evaporates
Historical Precedent

The November 2022 Avraham Eisenberg CRV short attack demonstrated the fragility of this setup. Eisenberg borrowed 88M CRV to short, and while the attack failed, it left Aave with $1.6M in bad debt and exposed the systemic risk of concentrated CRV collateral positions.

See how today's protocols score

The same 8-dimension rubric applied to 672+ live protocols.

View LeaderboardAll Backtests