Critical Vulnerability revealed in the Celer's State Guardian Network blockchain
Take action: When building a solution don't assume that your 'internal' stuff is secure, simply because it's not immediately exposed to attacks. Apply proper security scrutiny to all components of your systems.
Learn More
Jump Crypto security team has discovered a significant security flaw in Celer's State Guardian Network blockchain (SGN) that could have allowed a malicious validator to compromise the entire network and associated applications, including the widely-used Celer cBridge.
Upon detecting the vulnerability, Jump Crypto promptly reported it to the Celer team, who quickly addressed the issue before any malicious exploitation occurred.
Celer's State Guardian Network, built on the Cosmos Proof of Stake (PoS) blockchain, is responsible for facilitating cross-chain communication and bridging. Validators within the network monitor Celer's onchain contracts and facilitate their execution on the destination chain.
While major bridge providers' onchain smart contracts undergo rigorous scrutiny due to their open-source nature and bug bounty programs, the same level of scrutiny is often lacking for off-chain components. Celer, like other bridge providers, relies on closed-source implementations and centralized components for off-chain operations, which can leave these systems vulnerable.
To mitigate the risks associated with the vulnerability, Celer has implemented defense-in-depth measures. High-value outgoing transfers are intentionally delayed.
