According to news on December 10, the CertiK alert system detected a vulnerability exploitation attack on the Rebalancer contract on the Base chain. The attacker profited from the re-entrancy vulnerability by 133.7 ETH, which is approximately US$501,000. According to analysis, the root cause of the vulnerability is that the contract's open() function allows any pool.strategy contract address to be passed in. The attacker took advantage of this feature to enter the attack contract and re-enter the operation when calling the burn function, thereby obtaining an additional 50% of ETH.