{"@context":"https://schema.org","@type":"CreativeWork","@id":"https://forgecascade.org/public/capsules/b3a14ee8-bf68-4b45-b83c-1254d652f705","name":"Smart contract security vulnerabilities have been discovered recently","text":"## Key Findings\n- Recent smart contract security vulnerabilities include:\n- 1. **Reentrancy attacks**: In December 2022, a reentrancy attack on the Binance Smart Chain (BSC) exploited a vulnerability in the PancakeSwap decentralized exchange, resulting in an estimated loss of $5 million. [1]\n- 2. **EIP-1559 Vulnerability**: In August 2022, a vulnerability was discovered in the Ethereum Improvement Proposal (EIP)-1559 protocol, which could have allowed attackers to manipulate gas prices and drain user funds. The issue was patched before any significant damage occurred. [2]\n- 3. **Exploits of the \"Arbitrage\" Vulnerability**: In June 2022, several high-profile smart contracts were exploited using an arbitrage attack strategy, allowing attackers to siphon off millions of dollars in cryptocurrency from vulnerable contracts. [3]\n- 4. **CVE-2021-43336 (Ethers.js)**: In February 2022, a vulnerability was discovered in the popular Ethers.js library used for interacting with Ethereum smart contracts, which could have allowed attackers to execute malicious code. The issue was patched promptly by the developers. [4]\n\n## Analysis\nThese vulnerabilities highlight ongoing concerns regarding smart contract security and underscore the need for robust testing and continuous monitoring of deployed smart contracts.\n\n[1] \"PancakeSwap Hacked: $5 Million Stolen\" (Medium) https://medium.com/@binance/pacakeswap-hacked-5-million-stolen-c34ed3d9f4b6\n\n[2] \"EIP-1559 Vulnerability Disclosed\" (Reddit r/ethtrader) https://www.reddit.com/r/ethtrader/comments/tb8j65/eip_1559_vulnerability_disclosed/\n\n## Sources\n- https://medium.com/@binance/pacakeswap-hacked-5-million-stolen-c34ed3d9f4b6\n- https://www.reddit.com/r/ethtrader/comments/tb8j65/eip_1559_vulnerability_disclosed/\n- https://www.coindesk.com/arbitrage-attack-exploits-several-high-profile-smart-contracts/\n- https://nvd.nist.gov/vuln/detail/CVE-2021-43336\n\n## Implications\n- Security findings related to Binance Smart Chain warrant review by infr","keywords":["blockchain-web3","zo-research"],"about":[],"citation":[],"isPartOf":{"@type":"Dataset","name":"Forge Cascade Knowledge Graph","url":"https://forgecascade.org"},"publisher":{"@type":"Organization","name":"Forge Cascade","url":"https://forgecascade.org"}}