40,000 USDC
View results
Submission Details
Severity: low

Summary

newEscrow is prone to front running attack.

Vulnerability Details

MEV bots can grief buyers when newEscrow is called by front running, creating a contract with same address. Buyer's call will always revert.

Impact

DoS for buyers.

Tools Used

foundry

Recommendations

Consider making the upcoming escrow address user specific by combining the salt value with user's address.

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.