M-02 Unmitigated #15
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
confirmed for report
This issue is confirmed for report
MR-M-02
satisfactory
satisfies C4 submission criteria; eligible for awards
unmitigated
Lines of code
Vulnerability details
Mitigation of M-02: Issue partially mitigated, see comments
Link to Issue: code-423n4/2023-05-ambire-findings#18
Comments
While the issue mentioned in M-02 has been technically mitigated, the same attack can be performed in another function present in the wallet.
The report describes an attack in which a malicious relayer can force the failure of calls to
tryCatch
. The issue in this specific function has been mitigated, however the same attack can be performed in the functiontryCatchLimit
. This new issue is expanded in [adriro-NEW-M-01].Assessed type
Other
The text was updated successfully, but these errors were encountered: