Blockchain security firm Dedaub found a “critical vulnerability” in a Uniswap smart contract, which has since been addressed and redeployed.
In a Jan. 3 update, Dedaub said it had disclosed a vulnerability with the Universal Router smart contracts that would allow re-entrancy to drain user funds in the middle of a transaction. A re-entrancy attack takes place when a bad actor creates an external smart contract with malicious code to interact with and exploit a vulnerable smart contract and steal funds in a looped fashion over and over again.
The Dedaub team has disclosed a Critical vulnerability to the Uniswap team!
Funds are safe – Uniswap addressed the issue and redeployed the Universal Router smart contracts on all its chains 👏
The vulnerability allows re-entertrancy to drain the user's funds, mid-tx.
— Dedaub (@dedaub) January 2, 2023
The Universal Router is a fairly new smart contract that was introduced by Uniswap Labs in November. It functions by grouping NFT trades and ERC-20 tokens into a gas optimized-router and lets users swap multiple tokens on Uniswap and buy NFTs across marketplaces in a single transaction.
“If untrusted code is invoked at any point in the transfer, the code can re-enter the UniversalRouter and claim any tokens already in the UniversalRouter contract,” explained Dedaub founder Yannis Smaragdakis in a blog post.
Dedaub received a bug bounty of $40,000 worth of USDC from Uniswap after reporting the bug. The Uniswap team has addressed the issue and implemented a fix on the contract, said the security firm.
Although Dedaub described the bug as critical, Uniswap classified it as a “medium severity” issue in a message to the security firm. At the time of writing, the Uniswap team had not issued any statements of its own on a public platform addressing the bug.
- SEO Powered Content & PR Distribution. Get Amplified Today.
- Platoblockchain. Web3 Metaverse Intelligence. Knowledge Amplified. Access Here.
- Source: https://unchainedpodcast.com/security-firm-finds-critical-vulnerability-in-uniswap-smart-contract/
- 000
- 10
- a
- across
- addressing
- After
- All
- allows
- already
- and
- attack
- Bad
- bounty
- Bug
- bug bounty
- buy
- chains
- claim
- code
- contract
- contracts
- creates
- critical
- described
- ERC-20
- explained
- Exploit
- external
- fairly
- Fashion
- finds
- Firm
- Fix
- found
- founder
- from
- functions
- funds
- GAS
- HTTPS
- implemented
- in
- interact
- issue
- Issued
- IT
- Jan
- Labs
- Lets
- marketplaces
- message
- Middle
- multiple
- New
- NFT
- NFTs
- November
- own
- Place
- platform
- plato
- Plato Data Intelligence
- PlatoData
- Point
- public
- received
- Reporting
- router
- safe
- Said
- security
- since
- single
- smart
- smart contract
- Smart Contracts
- statements
- takes
- team
- The
- time
- to
- Tokens
- trades
- transaction
- transfer
- true
- Uniswap
- Universal
- Update
- USDC
- User
- user funds
- users
- vulnerability
- Vulnerable
- which
- worth
- would
- writing
- zephyrnet