CVE-2025-54427

Description

Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. The extrinsic note_min_gas_price_target is an inherent extrinsic, meaning only the block producer can call it. To ensure correctness, the ProvideInherent trait should be implemented for each inherent, which includes the check_inherent call. This allows other nodes to verify if the input (in this case, the target value) is correct. However, prior to commit a754b3d, the check_inherent function has not been implemented for note_min_gas_price_target. This lets the block producer set the target value without verification. The target is then used to set the MinGasPrice, which has an upper and lower bound defined in the on_initialize hook. The block producer can set the target to the upper bound. Which also increases the upper and lower bounds for the next block. Over time, this could result in continuously raising the gas price, making contract execution too expensive and ineffective for users. An attacker could use this flaw to manipulate the gas price, potentially leading to significantly inflated transaction fees. Such manipulation could render contract execution prohibitively expensive for users, effectively resulting in a denial-of-service condition for the network. This is fixed in version a754b3d.

Reserved 2025-07-21 | Published 2025-07-28 | Updated 2025-07-28 | Assigner GitHub_M

Problem types

CWE-682: Incorrect Calculation

CWE-754: Improper Check for Unusual or Exceptional Conditions

Product status

< a754b3d
affected

References

github.com/...ontier/security/advisories/GHSA-r6rj-gmqh-cv94

github.com/...ommit/a754b3dc6e1b6da98f71aea7bb1fa08677b24186

dotpal.io/...rlabs-2505-718c3bfa5df9fed1862fed05de506859.pdf

cve.org (CVE-2025-54427)

nvd.nist.gov (CVE-2025-54427)

Download JSON