Jump Crypto unveils critical vulnerability on Binance’s BNB Chain
The security flaw would allow the mint of an unlimited amount of arbitrary tokens. The issue was privately disclosed to the BNB team. Web3 infrastructure firm Jump Crypto has discovered a vulnerability in the Binance BNB Beacon Chain, which would allow the mint of an unlimited amount of arbitrary tokens. The issue was privately disclosed to the BNB team, enabling a patch to be developed and deployed within 24 hours. In a blog post from Feb. 10, Jump Crypto disclosed a detailed report about the vulnerability found two days earlier, which could "have led to a large loss of funds." As per the report, the BNB Chain is composed of two blockchains - the EVM compatible Smart Chain (BSC), which is based on a fork of go-ethereum and the Beacon Chain, built on top of Tendermint and Cosmos SDK. However, the Beacon Chain uses a BNB fork hosted on GitHub with several BNB-specific changes. "It deviates from the Cosmos SDK upstream in several ways, motivating us to take extra care in