You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Implement nonce or replay protection mechanisms, like using a nonce counter or unique identifiers, to prevent replay attacks.
The text was updated successfully, but these errors were encountered:
sherlock-admin3
changed the title
Abundant Lace Mammoth - Replay Attack Vulnerability in relayAccessUpdateBatch function leads to Exposure to Unauthorized contract manipulation
jollytesimal.eth - Replay Attack Vulnerability in relayAccessUpdateBatch function leads to Exposure to Unauthorized contract manipulation
Sep 23, 2024
jollytesimal.eth
High
Replay Attack Vulnerability in relayAccessUpdateBatch function leads to Exposure to Unauthorized contract manipulation
Summary
The contract is vulnerable to replay attacks due to missing nonce or replay protection mechanisms.
Vulnerability Detail
An attacker can replay signed transactions, allowing them to manipulate the contract's state.
Impact
An attacker can steal funds or disrupt contract functionality.
Code Snippet
https://github.com/sherlock-audit/2024-08-perennial-v2-update-3/blob/main/perennial-v2/packages/perennial-account/contracts/Controller_Incentivized.sol#L188-L200
Tool used
Manual Review
Recommendation
Implement nonce or replay protection mechanisms, like using a nonce counter or unique identifiers, to prevent replay attacks.
The text was updated successfully, but these errors were encountered: