Share this article
Aave V2 Users Temporarily Unable to Access $120M on Polygon After Governance Bug
All funds remain safe and a governance proposal is underway to update the faulty strategy, developers said.
Updated May 23, 2023, 6:56 a.m. Published May 23, 2023, 6:56 a.m.
Some Aave version 2 (V2) users are temporarily unable to access their funds stuck on the decentralized exchange's deployment on the Polygon blockchain after a strategy containing a faulty bug went live last week.
Decentralized finance (DeFi) protocol Aave allows users to lend and borrow tokens on several blockchains, such as Ethereum, Polygon and Avalanche. The extent of this sometimes causes compatibility bugs to arise, temporarily rendering parts of the platform inaccessible to users and leave funds stuck.
STORY CONTINUES BELOW
An upgrade last week to the “ReserveInterestRateStrategy” caused the issue, security firm BlockSec tweeted. Affected tokens include tether , bitcoin , ether and .
The ReserveInterestRateStrategy contract is a core contract in Aave that helps calculate and apply interest rates to borrowed loans.
“The root of the problem is that, for legacy reasons, the v2 version used on Aave v2 Polygon (and Avalanche) is slightly different from Aave v2 Ethereum, in regards to the interface used by the LendingPool to call the rate strategy of an asset,” Aave community member BDGLabs explained.
“The new interest rate strategies applied to those assets respect the interface of Aave v2 Ethereum, but not v2 Polygon, so when the LendingPool queries the strategy for the current rate, this call reverts, and so does the action “wrapping” it (e.g. deposit, borrow, etc),” the firm added.
.@AaveAave the latest upgrade of ReserveInterestRateStrategy in Aave V2 (Polygon) has caused a temporary halt of the protocol, impacting assets worth ~$110M!
— BlockSec (@BlockSecTeam) May 19, 2023
The root cause is the new ReserveInterestRateStrategy is only compatible with Ethereum, not compatible with Polygon. https://t.co/kg5696QNPo pic.twitter.com/Ze3zSBS8Ck
A fix is already in place, voting on by community members and users can top up funds on the network, an Aave governance proposal shows.
Other versions of Aave on Polygon continue to work smoothly as of Tuesday. AAVE tokens were up 2.7% in the past 24 hours, in line with a broader market jump.
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
New React bug that can drain all your tokens is impacting 'thousands of' websites
Attackers are using the vulnerability to deploy malware and crypto-mining software, compromising server resources and potentially intercepting wallet interactions on crypto platforms.
What to know:
- A critical vulnerability in React Server Components, known as React2Shell, is being actively exploited, putting thousands of websites at risk, including crypto platforms.
- The flaw, CVE-2025-55182, allows remote code execution without authentication and affects React versions 19.0 through 19.2.0.
- Attackers are using the vulnerability to deploy malware and crypto-mining software, compromising server resources and potentially intercepting wallet interactions on crypto platforms.
Top Stories
