SlowMist Analysis: GMX v1 has a design flaw, GLP price can be manipulated by reentrancy attacks

PANews
2025/07/10 07:52
GMX
GMX$11.46-5.75%
The Root Network
ROOT$0.003863+11.03%

PANews reported on July 10 that in response to the GMX attack, SlowMist analysis pointed out that the root cause of the attack was a design flaw in GMX v1: in this version, short selling operations would immediately update the global short average price (globalShortAveragePrices), and this price would directly affect the calculation of the asset management scale (AUM), thereby enabling attackers to manipulate the pricing of GLP tokens.

The attackers took advantage of this design flaw and used Keeper's function of enabling timelock.enableLeverage during order execution (a prerequisite for creating a large short position). Through a reentrancy attack, they successfully established a large short position, thereby manipulating the global average price, artificially raising the GLP price in a single transaction, and profiting from redemption operations.

According to news from yesterday, GMX stated that it has suspended trading on GMXV1 and the minting and redemption of GLP. About $40 million was stolen.

Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.

You May Also Like

Rumble will work with MoonPay to launch the crypto wallet Rumble Wallet in Q3

Rumble will work with MoonPay to launch the crypto wallet Rumble Wallet in Q3

PANews reported on July 10 that according to CoinDesk, video sharing platform Rumble (RUM) has reached a cooperation with crypto payment service provider MoonPay and will launch Rumble Wallet in
Ambire Wallet
WALLET$0.01527+4.66%
Work X
WORK$0.002054-6.63%
Arrland
RUM$0.0002904-7.51%
Launchplaza
LAUNCH$0.00000000000006-62.50%
Share
PANews2025/07/10 19:06
Tesla (TSLA.O) to hold annual shareholder meeting on November 6, 2025

Tesla (TSLA.O) to hold annual shareholder meeting on November 6, 2025

PANews reported on July 10 that documents from the U.S. Securities and Exchange Commission showed that Tesla (TSLA.O) is scheduled to hold its annual shareholders' meeting on November 6, 2025.
U Coin
U$0.01244+0.97%
HoldCoin
HOLD$0.00008055-12.04%
Share
PANews2025/07/10 18:14
Well-known short seller Jim Chanos warns of the risk of a pullback in the AI sector and criticizes listed companies holding Bitcoin as "ridiculous"

Well-known short seller Jim Chanos warns of the risk of a pullback in the AI sector and criticizes listed companies holding Bitcoin as "ridiculous"

PANews reported on June 30 that according to Fortune magazine, Jim Chanos, founder of Chanos & Co, a well-known short-selling agency, warned that although the AI craze has pushed up
WELL3
WELL$0.000269+3.10%
Sleepless AI
AI$0.1212+4.75%
Share
PANews2025/06/30 18:57

Trending News

More

Rumble will work with MoonPay to launch the crypto wallet Rumble Wallet in Q3

Tesla (TSLA.O) to hold annual shareholder meeting on November 6, 2025

Well-known short seller Jim Chanos warns of the risk of a pullback in the AI sector and criticizes listed companies holding Bitcoin as "ridiculous"

The visa exemption agreement between China and Malaysia will take effect on July 17

An ancient whale sold 1,000 ETH again in the early morning and currently still holds 23,619 ETH