Rewards Hub BlockSec has identified a critical vulnerability in closed-source contracts, leading to significant losses for SwapNet and Aperture Finance. The security firm reported that attackers exploited arbitrary call vulnerabilities in contracts on Ethereum, Arbitrum, Base, and BSC, resulting in over $17 million in losses. The flaw stemmed from insufficient input validation, allowing attackers to misuse token approvals and execute unauthorized asset transfers.
The incidents, affecting different protocols and blockchains, highlight a common issue: user-controlled low-level calls and inadequate input validation in contracts with token approvals. This vulnerability underscores the importance of rigorous security measures in smart contract development to prevent similar exploits.
BlockSec Uncovers $17M Vulnerability in SwapNet and Aperture Finance
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.