first-depositor vault inflation
A — loss on Ethereum in 2023, caused by an accounting / share-price flaw. Here's what happened, the vulnerability class behind it, and where it stands in ProveWall's re-proof pipeline.
| Loss | — |
| Year | 2023 |
| Chain | Ethereum |
| Vulnerability class | Accounting / share-price |
| Mechanism | ERC-4626 first-depositor share inflation |
◷ In the ProveWall re-proof queue
We have not yet re-executed this exploit on a forked chain. When we do, this page will show a signed, independently replayable receipt — the exploit moving value, and the patched control resisting. Until then this is a factual incident summary, not a proof. No proof, no finding.What this class of bug is
Accounting flaws corrupt a protocol's internal bookkeeping — share prices, balances, or health checks — so an attacker can withdraw more value than they put in.
How to read this page. The dollar figure is the publicly reported loss attributed to this
incident. A ProveWall re-proof reproduces the vulnerability class/mechanism by execution on a forked chain,
with a signed receipt — we say so explicitly only once that execution has passed.
Other accounting / share-price exploits
Same vulnerability class, re-proven or queued on the wall: Euler Finance · Compound COMP distribution · Spartan Protocol · Sonne Finance
Want your own contract actually proven — not guessed?
Static tools and LLM auditors ask "is there a check here?" and miss the check that exists but is wrong. OmniGuard Labs runs the exploit on a forked chain and sends you a signed pass/fail receipt. Request a proof-backed audit →