Interactions with external contracts
Summary
The Perpetual Vault Protocol interacts with external contracts like GMX and Paraswap, which could lead to potential DoS attacks if these dependencies fail.
Vulnerability Details
The GmxProxy and PerpetualVault contracts interact with external services like GMX and Paraswap. If these services fail or become unresponsive, it could prevent the protocol from executing critical functions like opening or closing positions.
Impact
A failure in external dependencies could cause the protocol to become unresponsive, preventing users from managing their positions and potentially locking their funds.
Tools Used
Manual code review
Recommendations
Implement fallback mechanisms or retry logic for interactions with external contracts. Additionally, consider using multiple external services to reduce the risk of dependency failure.
Lead Judging Commences
Suppositions
There is no real proof, concrete root cause, specific impact, or enough details in those submissions. Examples include: "It could happen" without specifying when, "If this impossible case happens," "Unexpected behavior," etc. Make a Proof of Concept (PoC) using external functions and realistic parameters. Do not test only the internal function where you think you found something.
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.