We would like to propose a micro grant for our recent responsible disclosure of a web security vulnerability, which was promptly addressed by the SSV Labs team.
We fully understand the procedures for bounty payouts within the SSV Network and are happy to cooperate with the team throughout the process.
Bug Report: Exploitation and Impact
Severity: Medium (Web/Apps)
Our team identified a vulnerability that allowed malicious static files to be loaded on a *.ssv.network subdomain.
Proof of Concept (PoC): A straightforward method was demonstrated to trick users into scanning a QR code for claiming tokens, redirecting them to phishing sites for airdrops.
Advanced Exploitation Risk: Attackers could leverage more complex techniques, enabling scans to perform multiple tasks, significantly increasing the potential for exploitation.
Grant Details
Total Grant Request: $2,000 Payment Terms:
Payment to be made in 100% SSV tokens and the remainder in USDC, calculated using a 7-day moving price average as of the approval date, re-evaluated for each milestone.
Thank you for your responsible disclosure and contribution to SSV Network’s security! Since the vulnerability was already addressed, could you clarify if this grant request is an addition to a previous bounty payout or if it’s separate?
This grant is entirely separate from the previous one. SSV x g0sfiX Vulnerability micro grant - It was mentioned solely to highlight our prior contribution and serve as a reminder about the grant.
Thanks for explaining! My question was, did you actually submit it to the SSV Bug Bounties program?
For an SSV Network grant, you need to fill out the Grants Template with your contribution details and submit it through the application form. The Grants Committee will handle the review.
Hey @AXBLOX, thanks for taking your time to ask questions to the applicant!
Please note that micro-grants do not need to go through the application process of the grants committee and can be awarded retrospectively by a single committee member up to an amount of $5k.
@Secure0x initially disclosed this bug on the SSV Immunefy Bug Bounty platform, but since it does not affect smart contracts, it is out-of-scope and we thus recommended to the whitehat to ask for a retroactive micro-grant instead.
Thank you for your responsible disclosure of the web security vulnerability affecting the GitBook engine on the docs.ssv.network subdomain. Your report and detailed proof of concept have contributed to enhancing the security of the SSV ecosystem.
After careful consideration, the Grants Committee has decided to award you a retroactive micro-grant of $1500, payable in 100% SSV tokens. The amount will be calculated using the 7-day moving price average as of today.
To proceed, we will reach out via the open ticket you have with us. The next steps include completing the KYC process and providing your wallet address for the token transfer.
Thank you once again for your valuable contribution to the network’s security. Should you have any questions, feel free to reach out.
SSV Grants Committee