Inadequate signature validation in `MondrianWallet::_validateSignature`
Summary
MondrianWallet::_validateSignature fails to verify the identity of the message signer.
Vulnerability Details
MondrianWallet::_validateSignature is responsible for validating the signatures of operations passed through the EntryPoint. Currently, the function only confirms that a signature is technically valid without verifying if it was signed by an authorized party (e.g., the wallet owner or another trusted signer).
Impact
Failing to verify the signer allows any user who can craft a valid signature to pass signature checks, potentially leading to unauthorized actions being performed under the guise of valid operations via ``MondrianWallet::execute`, which is called in a future part of ERC-4337 transaction flow.
Tools Used
Manual review
Recommendations
Add a check within the MondrianWallet::_validateSignature function to ensure that the operation is authorized by verifying the signature against the owner of the wallet:
Lead Judging Commences
ECDSA.recover should check against sender
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.