The vulnerability stemmed from a misapplied integer overflow safeguard in the inter_mate library, particularly in the checked_shlw method, which incorrectly validated inputs against a 256-bit limit instead of a 192-bit limit, allowing for unchecked liquidity injections, the team explained.

Quote

Sources

Sui DEX Cetus says overlooked flaw in open-source library used by smart contract led to $223 million exploit