No way to mark validator keys to marked as FRONT_RUN or INVALID_SIGNATURE in PermissionedNodeRegistry, till there is enough balance in insurance fund to compensate for 1 eth pre deposit made earlier
Tools Used
Recommended Mitigation Steps
Check while making 1 eth deposit in permissioned pool to check there is corresponding fund in insurance fund, in case there is front run or invalid signature by validator
Lines of code
https://github.com/code-423n4/2023-06-stader/blob/main/contracts/PermissionedNodeRegistry.sol#L254
Vulnerability details
Impact
No way to mark validator keys to marked as FRONT_RUN or INVALID_SIGNATURE in PermissionedNodeRegistry, till there is enough balance in insurance fund to compensate for 1 eth pre deposit made earlier
Tools Used
Recommended Mitigation Steps
Check while making 1 eth deposit in permissioned pool to check there is corresponding fund in insurance fund, in case there is front run or invalid signature by validator
Assessed type
Error