The Curve Storage Proofs protocol contains a vulnerability arising from timestamp-dependent calculations that create inconsistencies across chains with different block production rates. The protocol relies on block.timestamp
for critical price calculations without accounting for block time variations between chains. During network congestion or high volatility, these inconsistencies can create exploitable arbitrage opportunities, undermining the protocol's goal of providing consistent, non-manipulable price information across deployments.
The vulnerability arises from timestamp-dependent calculations that assume consistent block time progression across chains:
These timestamp-based calculations create inconsistencies when:
Block times vary between chains (e.g., Ethereum ~13s vs. L2s ~2s)
Network congestion causes inconsistent block production
Cross-chain message delays create timing differences
Root Cause:
The root cause is the architectural assumption that block.timestamp
progresses similarly across different chains without implementing a synchronization mechanism or accounting for cross-chain timing variations.
Exploitation Conditions:
Significant block time divergence between chains (>10%)
Active trading across multiple chains
Network congestion or unusual block time patterns
Sufficiently liquid markets on affected chains
Financial Impact:
Per-event profit potential: ~15,000
Annual impact: ~180,000 (assuming monthly exploitable events)
Impact increases during market stress when temporal inconsistency is highest
This calculation assumes:
Block time divergence of 30% during network congestion
Resulting price divergence of 0.1-0.3%
$10M liquidity across affected pools
1-2 exploitable events per month based on historical network congestion patterns
User Impact:
Users face unpredictable price divergences across chains
Arbitrage from temporal inconsistencies drains value from the ecosystem
Cross-chain operations become uncertain during network congestion
Systemic Implications:
Most impactful during market stress, potentially amplifying volatility
Creates uncertainty in cross-chain valuations
Erodes trust in cross-chain consistency of the protocol
This vulnerability is classified as LOW severity because:
It requires specific network conditions to be exploitable
The financial impact is modest compared to protocol TVL
Exploitation requires sophisticated monitoring and execution
The issue is inherent to cross-chain systems rather than a specific implementation flaw
Block time analysis across deployment chains
Temporal consistency validation
Cross-chain synchronization testing
Network congestion simulation
Arbitrage opportunity modeling
Immediate Mitigations:
Implement bounds checking for unusual block time patterns:
Develop monitoring tools for cross-chain temporal divergence:
Long-term Fixes:
Implement relative time calculations rather than absolute timestamps:
Add circuit breakers for periods of significant temporal divergence:
Verification Methodology:
Implement cross-chain block time monitoring
Test protocol behavior during simulated network congestion
Verify consistent price behavior across varying block time conditions
Ensure circuit breakers activate appropriately during anomalous conditions
- I believe all issues do not provide a sufficient proof that this latency lags can cause a dangerous arbitrage - Sponsor Comments - There is no issues with small lags if used in liquidity pools for example because of fees. Fees generate spread within which price can be lagged. - Looking at the price charts [here](https://coinmarketcap.com/currencies/savings-crvusd/), there is never a large spike in price (in absolute values), that can be exploited, combined with the fact that prices are smoothed and updates are not immediate - Not even the most trusted oracles e.g. chainlink/redstone can guarantee a one-to-one synchronized value, so in my eyes, the price smoothening protection is sufficient in protecting such issues
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.