stake.link

DeFiHardhatBridge

27,500 USDC

View results

Previous Next

Submission Details

Severity: high

Invalid

WrappedTokenBridge does not function correctly

0xLogos

Summary

In WrappedTokenBridge there is mess with ccip message receiver and wrapped tokens receiver.

Vulnerability Details

User provided receiver is intended to be receiver of wrapped tokens on distanation chain.

But this address go first to _transferTokens function and then to _buildCCIPMessage where it set as EVM2AnyMessage.receiver which is ccip message receiver on destanation chain, not wrapped token receiver.

This message intented to be delivered to same WrappedTokenBridge contract on destination chain and handled in this function. In this function actual wrapped token receiver is decoded from message data, but this data is empty

Impact

WrappedTokenBridge contract unable to perform intended function. High severity because user will loss tokens sended through this bridge.

Tools Used

Manual review

Recommendations

Encode user provided receiver address to message data and set WrappedTokenBridge contract on destination chain as message receiver. You need to keep track of these contracts on all supported chain.

Updates

Lead Judging Commences

0kage Lead Judge over 1 year ago

Submission Judgement Published

Invalidated

Reason: Design choice

Prize pool breakdown

Total prize

27,500 USDC

nSLOC

1,414

19 USDC / LOC

High Medium

25,000 USDC

Low

2,500 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.