defirisk.co
rubric v1.7.0

New contract with similar bytecode to exploit template

Balancer (v2 + v3)'s assessment for RD-F-094 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

New contract with similar bytecode to exploit template | Applicable: Yes — v2 CSP rounding exploit template now public | The November 2025 exploit technique (rounding error in _upscaleArray + batchSwap against v2 ComposableStablePool) is publicly documented by Check Point Research and Certora. A bytecode-similar exploit template contract could be re-deployed against residual v2 CSP pools. No confirmed exploit-template contract deployment detected in assessment window. v3 confirmed unaffected by v2 rounding mechanism. Requires bytecode-similarity index not configured in this static assessment. | Threshold: New contract deployed with high bytecode similarity to known exploit template for this protocol class | Would fire: No

Sources #

  • URL
    https://research.checkpoint.com/2025/how-an-attacker-drained-128m-from-balancer-through-rounding-error-exploitation/retrieved 2026-05-05

Methodology #

Detect whether a freshly deployed contract has high bytecode similarity to a known exploit template targeting this protocol class.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol balancer factor RD-F-094 score gray collected_at 2026-05-05 12:41:36