Adopting guidance from the US National Cybersecurity Strategy to secure the Internet of Things

The recently published United States National Cybersecurity Strategy warns that many popular Internet of Things IoT devices are not sufficiently secure to protect against many of today’s common cybersecurity threats.1 The strategy also cautions that many of these IoT devices are difficult—or, in...

Yearn Stragety tolerant 0 loss, which is too strict and can block withdraw

Lines of code Vulnerability details Impact Yearn Stragety tolerant 0 loss, which is too strict Proof of Concept When withdraw from Yearn Stragety result = vault.withdrawtoWithdraw, addressthis, 0; @param maxLoss The maximum acceptable loss to sustain on withdrawal. Defaults to 0.01%. If a loss is...

rate is wrong

Lines of code Vulnerability details Impact attacker can manipulate pool price to make strategy have eth lower as it should have 1 seth 1 eth then mint new steth 1 steth = 1 eth so attacker can gain share more than normal Proof of Concept 1. attacker manipulate pool price 1 seth 1 eth 2. attacker...

Direct claim of convex rewards causes rewards to get stuck

Lines of code Vulnerability details Impact ConvexTriCryptoStrategy does not take into account that rewards from Convex can be claimed directly on behalf of any address. All rewards that get into the strategy contract this way will get stuck and compounding of yield will be denied. Proof of Concep...

ConvexTriCryptoStrategy might not compound all rewards

Lines of code Vulnerability details Impact When compounding in ConvexTriCryptoStrategy, the number of tokens that is swapped into wETH does not account for extraRewards and tokenRewards. This can cause a loss of yield and rewards to be lost. Proof of Concept In ConvexTriCryptoStrategy.executeClai...

Commentary on the Implementation Plan for the 2023 US National Cybersecurity Strategy

The Atlantic Council released a detailed commentary on the White Houses new "Implementation Plan for the 2023 US National Cybersecurity Strategy." Lots of interesting bits. So far, at least three trends emerge: First, the plan contains a somewhat more concrete list of actions than its parent...

CVE-2023-3376

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection.This issue affects Zekiweb: before 2...

CVE-2023-3376

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection. This issue affects Zekiweb: before 2...

CVE-2023-3376

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection. This issue affects Zekiweb: before 2...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection.This issue affects Zekiweb: before 2...

CVE-2023-3376 SQLi in Digital Strategys Zekiweb

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection. This issue affects Zekiweb: before 2...

CVE-2023-3376

CVE-2023-3376 is a SQL injection vulnerability in Digital Strategy Zekiweb, arising from improper neutralization of special elements in SQL commands. The issue affects Zekiweb versions before 2. The CVSS 3.1 vector assigns a high impact on confidentiality, integrity, and availability, with networ...

CVE-2023-3376 SQLi in Digital Strategys Zekiweb

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Digital Strategy Zekiweb allows SQL Injection. This issue affects Zekiweb: before 2...

Digital Strategy Zekiweb SQL注入漏洞

Digital Strategy Zekiweb is a web application from Digital Strategy. A SQL injection vulnerability exists in versions prior to Digital Strategy Zekiweb 2. The vulnerability stems from the presence of a SQL injection vulnerability...

Buying Campaign Contributions as a Hack

The first Republican primary debate has a popularity threshold to determine who gets to appear: 40,000 individual contributors. Now there are a lot of conventional ways a candidate can get that many contributors. Doug Burgum came up with a novel idea: buy them: A long-shot contender at the bottom...

How to Apply MITRE ATT&CK to Your Organization

Discover all the ways MITRE ATT&CK can help you defend your organization. Build your security strategy and policies by making the most of this important framework. What is the MITRE ATT&CK Framework? MITRE ATT&CK Adversarial Tactics, Techniques, and Common Knowledge is a widely adopted framework...

Mastodon Social Network Patches Critical Flaws Allowing Server Takeover

Mastodon, a popular decentralized social network, has released a security update to fix critical vulnerabilities that could expose millions of users to potential attacks. Mastodon is known for its federated model, consisting of thousands of separate servers called "instances," and it has over 14...

Calculation during rebalancing can overflow

Lines of code Vulnerability details Proof of Concept Rebalancing logic in TalosBaseStrategy will start by the strategy manager calling TalosBaseStrategy.rebalance to swap imbalanced tokens. This function will call TalosStrategySimple.doRebalance Next, PoolActions.swapEqualAmounts will be called...

BranchPort.toggleStrategyToken used on unregistered STRATEGY TOKEN will allow STRATEGIES to drain full token balance

Lines of code Vulnerability details Impact BranchPort.toggleStrategyToken may be called on a token not registered as a strategy token effectively registering it without setting a getMinimumTokenReserveRatio. In such a case minimumReserves will always return a value smaller than the current balanc...

If a STRATEGY TOKEN is "Toggled off" STRATEGIES will still be able to withdraw but returning of tokens with replenishReserves will be disabled.

Lines of code Vulnerability details Impact BranchPort.manage allows a registered Strategy to withdraw certain amounts of enabled strategy tokens. It validates access rights ie. if called by a strategy registered for the requested token. It however doesn't check if the token itself is currently...