First Flight #4: Boss Bridge

First Flight #4

Beginner FriendlyFoundryBridge

100 EXP

View results

Previous Next

Submission Details

Severity: high

Valid

sendToL1 function should not be public

Sovni

Summary

sendToL1 function is set to public so any valid signer can call it.
As there is no check regarding the message passed in the parameter of this function, it could be used to execute unexpected functions.

Vulnerability Details

The function withdrawTokensToL1 is an external function used by a signer to withdraw token. It calls the function sendToL1 by encoding the transferFrom function.

Anyway the sendToL1 function is a public function which could be called directly. It just checks that the signature was done by an authorized signer, so a signer could call it directly by encoding any other function which is a securoty breach

Impact

A signer could call directly the sendToL1 function to call any other functions other than transferFrom which is a security breach.

Tools Used

No tools used. It was discovered through manual inspection of the contract.

Recommendations

The function sendToL1 should be set to private to aviod being called directly. Probably it ould make sense Also does it make sense to have 2 functions

Updates

Lead Judging Commences

0xnevi Lead Judge about 2 years ago

Submission Judgement Published

Validated

Assigned finding tags:

sendToL1(): Wrong function visibility

Rewards breakdown

nSLOC

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.