‘Critical vulnerability’ reported in Balancer v2 pools

The vulnerability has been mitigated in around 80% of the affected v2 pools

by Bessie Liu /
article-image

Tang Yan Song/Shutterstock modified by Blockworks

share

Liquidity protocol Balancer has discovered and disclosed a “critical vulnerability” affecting more than 100 of its v2 pools across eight blockchains.

Balancer said the issue has been mitigated in around 80% of the impacted pools. The remaining 20% of affected pools represent roughly 4% of Balancer’s total value locked (TVL).

The Balancer team posted a list of affected pools on its GitHub page and its emergency subDAO has been activated, enabling users to exit from affected pools. 

“We believe funds in the mitigated pools (labeled ‘mitigated’) are safe, but nevertheless strongly recommend timely migration to safe pools, or withdrawal,” Jeff Bennett, a software engineer at Balancer Labs, wrote in a post. 

Bennett urged all liquidity providers to exit their positions in affected pools immediately. 

“Pools that could not be mitigated are labeled ‘at risk.’ If you are [a liquidity provider] in any of these pools, please exit immediately,” he wrote.

The situation had an immediate market impact. The price of Balancer’s native token BAL dipped by over 4% on the news of the vulnerabilities. BAL’s price has since recovered, trading at $3.47 at the time of writing. 

Blockworks Research analyst Spencer Hughes noted that the Balancer vulnerability shows that smart contract audits cannot guarantee total safety, and that it is important to note that they never claimed to be.

“With ~$830M TVL, a Balancer exploit would have left one of the most prominent DEXs for dead,” Hughes said. “Emergency SubDAOs are definitely very important for all DeFi protocols, and it is great that they were able to act before anything malicious could occur.”

Get the news in your inbox. Explore Blockworks newsletters:

Tags

Newsletter

The Breakdown

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy ticketslearn more

recent research

Research Report Templates.png

Research

Scaling Web Performance: Decentralized CDNs

Content Delivery Networks (CDNs) represent low-hanging fruit in a massive market ripe for Web3-driven disruption. The global CDN market was valued at ~$28B in 2024, and is projected to surpass $140B by 2034, (18.75% CAGR) underscoring the immense demand for efficient content delivery.

by Nick Carpinito

/

news

article-image

DeFiLightspeed Newsletter

Solana data storage project wins Colosseum hackathon

TAPEDRIVE says it can make Solana data storage 1,400x cheaper

by Jack Kubinec /
article-image

Forward Guidance NewsletterMarkets

The labor market is sending false signals

Immigration changes are papering over a fragile labor market

by Felix Jauvin /
article-image

OpinionThe Drop

Crypto needs more no-fee, open-source payment tools

BlueYard’s head of crypto research developed FreePay to make fee-free, tap-to-pay crypto payments a reality

by Kate Irwin /
article-image

0xResearch NewsletterDeFi

‘The world supercomputer’: Nexus activates final testnet for AI-ready blockchain

Buzzwords include: succinct universal proofs, zkVM, incrementally verifiable computation, distributed supercomputer and agentic AI

by Macauley Peterson /
article-image

MarketsSupply Shock

Bitcoin already sets all-time high against the US dollar index

US dollars might technically be worth less, but it’s still good news

by David Canellis /
article-image

BusinessEmpire Newsletter

Consumer crypto is having a moment

Apps are doing well, as is casino gaming, says Tom Schmidt of Dragonfly

by Katherine Ross /