How Does Convex Finance Work?

Aggregates CRV deposits to acquire maximum veCRV boost (up to 2.5x), sharing boosted yields with all depositors without individual 4-year lock requirements

Pioneered the veCRV aggregation model that democratized Curve boost access. Now controls ~50% of all veCRV, making Convex the dominant player in Curve governance.

vlCVX (vote-locked CVX) holders direct Convex's veCRV voting power for Curve gauge weight allocation

Meta-governance layer where CVX holders control Curve's emission allocation. This is the core mechanism of the 'Curve Wars' — protocols bribe vlCVX holders to direct CRV emissions to their pools.

Convex takes a 17% fee on CRV rewards (10% to cvxCRV stakers, 5% to vlCVX, 2% to treasury/caller)

Transparent fee structure that funds the CVX ecosystem. Fee distribution incentivizes both CRV staking and CVX locking.

CVX must be vote-locked for 16 weeks (vlCVX) to participate in gauge weight voting and earn platform fees

16-week lock provides commitment but is shorter than Curve's 4-year veCRV lock. Redeployment after March 2022 bug required all users to re-lock.

CRV deposited into Convex is permanently locked as veCRV, with cvxCRV issued as a liquid (but one-way) wrapper

cvxCRV is irreversible — deposited CRV can never be withdrawn from Convex. cvxCRV trades on secondary markets but can depeg from CRV.

Protocols pay bribes (via Votium, Hidden Hand) to vlCVX holders to direct CRV emissions to their Curve pools

Bribe markets are a core revenue stream for CVX holders. Bribe efficiency ($ of emissions directed per $ of bribe) fluctuates and can become uneconomical.

Users deposit Curve LP tokens into Convex to earn boosted CRV rewards, CVX rewards, and any third-party incentives

Core yield product. Users get max-boosted CRV without locking their own CRV, plus additional CVX token rewards.

Convex's dominant veCRV position creates single-point-of-failure risk for Curve governance. A CVX governance attack could redirect all of Curve's emissions, destabilizing pools that depend on CRV incentives for liquidity.

cvxCRV cannot be unwrapped back to CRV, so it trades purely on secondary market demand. If Convex yields decline or trust erodes, cvxCRV can depeg significantly from CRV, causing losses for holders with no redemption mechanism.

High CVX wallet concentration means a small number of actors control most gauge voting power. Whale collusion or a single large holder could manipulate gauge weights, directing CRV emissions to self-interested pools at the expense of the broader ecosystem.

If bribe efficiency declines (bribes cost more than the emissions they generate), protocols stop bribing, reducing vlCVX yield. This undermines the core CVX value proposition, triggering CVX selling and further reducing governance participation.

Convex users have funds in a layered smart contract stack: Curve pool → Curve gauge → Convex deposit wrapper → Convex rewards contract. A vulnerability in any layer cascades. The June 2025 Resupply exploit ($9.5M) demonstrated how Convex-linked protocols can be exploited. Resupply fully repaid the bad debt using treasury and insurance funds.