First Flight #15: Mondrian Wallet

Beginner FriendlyFoundry
100 EXP
Submission Details
Severity: high
Valid

Missing check inside _validateSignature if the signature was signed by the owner

Updates

Lead Judging Commences

inallhonesty Lead Judge 7 months ago
Submission Judgement Published
Validated
Assigned finding tags:

ECDSA.recover should check against sender

`_validateSignature` SHOULD return SIG_VALIDATION_FAILED (and not revert) on signature mismatch.

Support

FAQs

Can’t find an answer? Join our Discord or follow us on Twitter.

Cyfrin
Updraft
CodeHawks
Solodit
Resources