Aptos Patches Critical Move VM Flaw With Theoretical Risk Up To $70B
2026-07-05 08:44

Woofun AI reports that blockchain security firm Hexens identified a critical vulnerability in the Aptos Move VM in February, which was patched within hours of disclosure. The flaw stemmed from a cache handling defect leading to type confusion, potentially allowing attackers to assume high-privilege roles in stablecoin minting or cross-chain bridges. Hexens simulated the exploit using a $3,000 server, achieving success in 17 to 18 of 20 tests, and estimated potential impact on $250 million in native TVL. If extended to broader infrastructure like centralized exchanges, the theoretical systemic risk could reach approximately $70 billion. Aptos confirmed the fix via its bug bounty program, stating no user funds were affected and real-world exploitability was extremely low.

Disclaimer: Views are the author's own and do not represent the platform. Do not reproduce without permission. Content is for reference only, not investment advice. Trade at your own risk.
Tags:
Hexens
Move VM
Aptos
Share:
back