0x73696d616f - Manipulated `edge.acknowledged` due to signature applying both to `TitlesGraph::acknowledgeEdge()` and `TitlesGraph::unacknowledgeEdge()` #175
Manipulated edge.acknowledged due to signature applying both to TitlesGraph::acknowledgeEdge() and TitlesGraph::unacknowledgeEdge()
Summary
TitlesGraph::acknowledgeEdge() and TitlesGraph::unacknowledgeEdge() use exactly the same signature, which means that someone may frontrun one of these calls and do the opposite of the intended.
Vulnerability Detail
TitlesGraph::acknowledgeEdge() and TitlesGraph::unacknowledgeEdge() allow the creator or entity to modifiy the acknowledged status of an edge using a signature signed offchain. However, the same signature can be used in both functions, allowing attackers to spot the signature and frontrun the transaction in the mempool and set edge.acknowledged to the opposite value of what was intended.
The creator may overwrite the value later using one of TitlesGraph::acknowledgeEdge() or TitlesGraph::unacknowledgeEdge() that do not require a signature, but it would still leave a window of opportunity where the acknowledgement was gamed. As stated in the readme, issues showing manipulation of acknowledgement should be considered valid, demonstrating the relevance of this finding:
In addition to the security of funds, we would also like there to be focus on the sanctity of the data in the TitlesGraph and the permissioning around it (only the appropriate people/contracts can signal reference and acknowledgement of reference).
Impact
Manipulated edge.acknowledged value by an attacker.
Use a different typehash for each function. The arguments may remain the same (edgeId and data), changing the struct name from Ack to AcknowledgeEdge and UnacknowledgeEdge, should be enough to generate different signatures.
0x73696d616f
medium
Manipulated
edge.acknowledgeddue to signature applying both toTitlesGraph::acknowledgeEdge()andTitlesGraph::unacknowledgeEdge()Summary
TitlesGraph::acknowledgeEdge()andTitlesGraph::unacknowledgeEdge()use exactly the same signature, which means that someone may frontrun one of these calls and do the opposite of the intended.Vulnerability Detail
TitlesGraph::acknowledgeEdge()andTitlesGraph::unacknowledgeEdge()allow the creator or entity to modifiy theacknowledgedstatus of an edge using a signature signed offchain. However, the same signature can be used in both functions, allowing attackers to spot the signature and frontrun the transaction in the mempool and setedge.acknowledgedto the opposite value of what was intended.The
creatormay overwrite the value later using one ofTitlesGraph::acknowledgeEdge()orTitlesGraph::unacknowledgeEdge()that do not require a signature, but it would still leave a window of opportunity where theacknowledgementwas gamed. As stated in the readme, issues showing manipulation of acknowledgement should be considered valid, demonstrating the relevance of this finding:Impact
Manipulated
edge.acknowledgedvalue by an attacker.Code Snippet
TitlesGraph::acknowledgeEdge() and TitlesGraph::unacknowledgeEdge()
Tool used
Manual Review
Vscode
Recommendation
Use a different
typehashfor each function. The arguments may remain the same (edgeIdanddata), changing the struct name fromAcktoAcknowledgeEdgeandUnacknowledgeEdge, should be enough to generate different signatures.Duplicate of #273