Vulnerability Database

309,136

Total vulnerabilities in the database

Babylon Integer Overflow in Distribution Module CumulativeRewardRatio Calculation Leading to Chain Halt

Summary

Minting large amount of tokens through ibc transfer and then depositing them in validator rewards pool (via DepositValidatorRewardsPool message) can lead to integer overflow panic when calculating cumulative_reward_ratio for the validator.

This calculation happens in x/epoching module EndBlocker, thus the panic will halt the chain.

Impact

Denial of Service - Due to panic in the EndBlocker Babylon Genesis will halt

Published: May 15, 2025
Updated: May 16, 2025
GHSA: GHSA-869w-47c6-fq8q
Severity: High
Exploit:

No technical information available.

CWEs:

Affected Software
References

Software	From	Fixed in
github.com/babylonlabs-io/babylon	-	1.1.0

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo