Symbiotic Bug Bounty
Maximum reward
$500,000
Severity
Max. Reward
Critical$500,000
High$100,000
Medium$10,000
No deposit required
Findings submitted
72
Start date
1 Feb 2026
KYC
Required to join
Please sign in as a researcher to join the bounty.
Log inIn scope
Severity
Min and Max Reward
Critical$100,000 to $500,000
High
$50,000 to $100,000
Medium
$10,000
LowDiscretionary
Core smart contract addresses and source code for the protocol.
If you discover a vulnerability in any component not explicitly listed but which poses a risk to user funds, user data, or system integrity, you may submit it for consideration. Our team will review such submissions on a case-by-case basis.
Note: Actual reward amounts are determined at Symbiotic's sole discretion. Factors influencing payout include report quality, completeness, and severity/exploitability.
Name | Description | Asset |
|---|---|---|
| NetworkMiddlewareService | Etherscan contract address for NetworkMiddlewareService. | |
| NetworkMiddlewareService | Source code for NetworkMiddlewareService on GitHub. | |
| OperatorVaultOptInService | Etherscan contract address for OperatorVaultOptInService. | |
| OperatorVaultOptInService | Source code for OperatorVaultOptInService on GitHub. | |
| OperatorNetworkOptInService | Etherscan contract address for OperatorNetworkOptInService. | |
| OperatorNetworkOptInService | Source code for OperatorNetworkOptInService on GitHub. | |
| NetworkRegistry | Etherscan contract address for NetworkRegistry. | |
| NetworkRegistry | Source code for NetworkRegistry on GitHub. | |
| OperatorRegistry | Etherscan contract address for OperatorRegistry. | |
| OperatorRegistry | Source code for OperatorRegistry on GitHub. | |
| NetworkRestakeDelegator | Etherscan contract address for NetworkRestakeDelegator. | |
| NetworkRestakeDelegator | Source code for NetworkRestakeDelegator on GitHub. | |
| FullRestakeDelegator | Etherscan contract address for FullRestakeDelegator. | |
| FullRestakeDelegator | Source code for FullRestakeDelegator on GitHub. | |
| OperatorNetworkSpecificDelegator | Etherscan contract address for OperatorNetworkSpecificDelegator. | |
| OperatorNetworkSpecificDelegator | Source code for OperatorNetworkSpecificDelegator on GitHub. | |
| OperatorSpecificDelegator | Etherscan contract address for OperatorSpecificDelegator. | |
| OperatorSpecificDelegator | Source code for OperatorSpecificDelegator on GitHub. | |
| Slasher | Etherscan contract address for Slasher. | |
| Slasher | Source code for Slasher on GitHub. | |
| VetoSlasher | Etherscan contract address for VetoSlasher. | |
| VetoSlasher | Source code for VetoSlasher on GitHub. | |
| Vault | Etherscan contract address for Vault. | |
| Vault | Source code for Vault on GitHub. | |
| VaultTokenized | Etherscan contract address for VaultTokenized. | |
| VaultTokenized | Source code for VaultTokenized on GitHub. | |
| DelegatorFactory | Etherscan contract address for DelegatorFactory. | |
| DelegatorFactory | Source code for DelegatorFactory on GitHub. | |
| SlasherFactory | Etherscan contract address for SlasherFactory. | |
| SlasherFactory | Source code for SlasherFactory on GitHub. | |
| VaultFactory | Etherscan contract address for VaultFactory. | |
| VaultFactory | Source code for VaultFactory on GitHub. | |
| VaultConfigurator | Etherscan contract address for VaultConfigurator. | |
| VaultConfigurator | Source code for VaultConfigurator on GitHub. | |
| DefaultCollateralMigrator | Etherscan contract address for DefaultCollateralMigrator. | |
| DefaultCollateralMigrator | Source code for DefaultCollateralMigrator on GitHub. | |
| DefaultStakerRewards v2 | Etherscan contract address for DefaultStakerRewards v2. | |
| DefaultStakerRewards v2 | Source code for DefaultStakerRewards v2 on GitHub. | |
| DefaultStakerRewards | Etherscan contract address for DefaultStakerRewards. | |
| DefaultStakerRewards | Source code for DefaultStakerRewards on GitHub. | |
| DefaultOperatorRewards | Etherscan contract address for DefaultOperatorRewards. | |
| DefaultOperatorRewards | Source code for DefaultOperatorRewards on GitHub. | |
| DefaultStakerRewardsFactory v2 | Etherscan contract address for DefaultStakerRewardsFactory v2. | |
| DefaultStakerRewardsFactory v2 | Source code for DefaultStakerRewardsFactory v2 on GitHub. | |
| DefaultStakerRewardsFactory | Etherscan contract address for DefaultStakerRewardsFactory. | |
| DefaultStakerRewardsFactory | Source code for DefaultStakerRewardsFactory on GitHub. | |
| DefaultOperatorRewardsFactory | Etherscan contract address for DefaultOperatorRewardsFactory. | |
| DefaultOperatorRewardsFactory | Source code for DefaultOperatorRewardsFactory on GitHub. | |
| BurnerRouter | Etherscan contract address for BurnerRouter. | |
| BurnerRouter | Source code for BurnerRouter on GitHub. | |
| BurnerRouterFactory | Etherscan contract address for BurnerRouterFactory. | |
| BurnerRouterFactory | Source code for BurnerRouterFactory on GitHub. | |
| wstETH_Burner | Etherscan contract address for wstETH_Burner. | |
| wstETH_Burner | Source code for wstETH_Burner on GitHub. | |
| rETH_Burner | Etherscan contract address for rETH_Burner. | |
| rETH_Burner | Source code for rETH_Burner on GitHub. | |
| mETH_Burner | Etherscan contract address for mETH_Burner. | |
| mETH_Burner | Source code for mETH_Burner on GitHub. | |
| swETH_Burner | Etherscan contract address for swETH_Burner. | |
| swETH_Burner | Source code for swETH_Burner on GitHub. | |
| sfrxETH_Burner | Etherscan contract address for sfrxETH_Burner. | |
| sfrxETH_Burner | Source code for sfrxETH_Burner on GitHub. | |
| ETHx_Burner | Etherscan contract address for ETHx_Burner. | |
| ETHx_Burner | Source code for ETHx_Burner on GitHub. | |
| FullRestakeDecreaseHook | Etherscan contract address for FullRestakeDecreaseHook. | |
| FullRestakeDecreaseHook | Source code for FullRestakeDecreaseHook on GitHub. | |
| NetworkRestakeDecreaseHook | Etherscan contract address for NetworkRestakeDecreaseHook. | |
| NetworkRestakeDecreaseHook | Source code for NetworkRestakeDecreaseHook on GitHub. | |
| NetworkRestakeRedistributeHook | Etherscan contract address for NetworkRestakeRedistributeHook. | |
| NetworkRestakeRedistributeHook | Source code for NetworkRestakeRedistributeHook on GitHub. | |
| OperatorSpecificDecreaseHook | Etherscan contract address for OperatorSpecificDecreaseHook. | |
| OperatorSpecificDecreaseHook | Source code for OperatorSpecificDecreaseHook on GitHub. | |
| FullRestakeResetHook | Source code for FullRestakeResetHook on GitHub (first reference). | |
| FullRestakeResetHook | Source code for FullRestakeResetHook on GitHub (second reference). | |
| NetworkRestakeResetHook | Source code for NetworkRestakeResetHook on GitHub (first reference). | |
| NetworkRestakeResetHook | Source code for NetworkRestakeResetHook on GitHub (second reference). | |
| OperatorSpecificResetHook | Source code for OperatorSpecificResetHook on GitHub (first reference). | |
| OperatorSpecificResetHook | Source code for OperatorSpecificResetHook on GitHub (second reference). |
Out of scope
- Non-issue: Any already described issue from audits (find all audits here - https://docs.symbiotic.fi/get-started/resources/audits), or described in documentation, or described in codebase’s NatSpec.