Retour au portail de sécurité

Ethereum's SLIP-24 payment-request branch in production firmware signs attacker calldata under cover of verified-swap UI

Signalé sur May 16, 2026

A safeguard meant to prevent extra calldata from being attached to a SLIP-24 verified-swap transaction was not active in production firmware. This could allow a malicious host to inject attacker-controlled calldata while the device displayed a normal verified-swap confirmation, resulting in a bypass of user transaction confirmation.

Signalé par LoopGhost