l2-vulnerability

1 article
sort: new top best
clear filter
bug-bounty498 google352 xss301 microsoft295 facebook262 rce211 exploit199 malware171 apple163 cve136 account-takeover115 bragging-post102 privilege-escalation95 csrf90 phishing86 browser75 writeup74 authentication-bypass69 supply-chain67 dos66 stored-xss65 reflected-xss57 ssrf56 reverse-engineering55 react52 access-control52 input-validation49 cross-site-scripting48 aws47 cloudflare47 docker46 web-security46 lfi46 sql-injection45 smart-contract45 web-application44 ethereum44 web343 ctf43 oauth43 node43 defi43 pentest40 race-condition39 open-source38 cloud37 idor37 info-disclosure36 burp-suite36 vulnerability-disclosure35
0 7/10
Brahma
vulnerability

Brahma.Fi's L2 position handler miscalculates the value of positions in negative states due to sign confusion in the positionInWantToken() function, where negative account values (indicating underwater accounts rather than short positions) are treated as positive, leading to incorrect share issuance, excess withdrawals, and potential protocol insolvency.

sign-confusion position-miscalculation accounting-error perpetual-protocol l2-vulnerability fund-loss protocol-insolvency liquidation-risk solidity defi-vulnerability
Brahma.Fi PerpV2Controller PerpTradeExecutor Perpetual Protocol Optimism
trust-security.xyz · Trust · 23 hours ago · details