mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
784 B
784 B
CVE-2020-15302
Description
In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a denial of service (locking) or a takeover.
POC
Reference
- https://blog.openzeppelin.com/argent-vulnerability-report/
- https://blog.openzeppelin.com/argent-vulnerability-report/
Github
No PoCs found on GitHub currently.