Home > Quick > Body

CertiK:Base 链上 Rebalancer 合约遭到重入攻击,损失超 50 万美元

clock
2024-12-10 10:19:11
12月10日消息,CertiK 警报系统检测到 Base 链上 Rebalancer 合约发生漏洞利用攻击,攻击者通过重入漏洞获利 133.7 ETH,约合 50.1 万美元。
据分析,漏洞的根本原因在于合约的 open() 函数允许传入任意的 pool.strategy 合约地址。攻击者利用此特性输入攻击合约,在调用 burn 函数时重入操作,从而额外获取了 50% 的 ETH。
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
New Tab Page - Desk3 | Plugin
Stay ahead of the game in the cryptocurrency space.