search
Active Boosts

49668 sc insight validator status function emit misleading event

Submitted on Jul 18th 2025 at 03:39:23 UTC by @holydevoti0n for Attackathon | Plume Networkarrow-up-right

  • Report ID: #49668

  • Report Type: Smart Contract

  • Report severity: Insight

  • Target: https://github.com/immunefi-team/attackathon-plume-network/blob/main/plume/src/facets/ValidatorFacet.sol

hashtag
Summary

The function ValidatorFacet::setValidatorStatus emits the ValidatorStatusUpdated event unconditionally, including when the supplied status matches the validator's current status. Off-chain consumers can be misled into believing a status change occurred when it did not.

hashtag
Vulnerability Details

In ValidatorFacet.sol the function emits the ValidatorStatusUpdated event outside the conditional that checks whether the status actually changes. When an admin calls setValidatorStatus with the same status already stored for the validator, no state change occurs, but the event is still emitted.

Example excerpt:

function setValidatorStatus(
    uint16 validatorId,
    bool newActiveStatus
) external onlyRole(PlumeRoles.ADMIN_ROLE) _validateValidatorExists(validatorId) {
    // ...
    bool currentStatus = validator.active;

    // @audit If status is actually changing
    if (currentStatus != newActiveStatus) {
        ...
    }

    // @audit-issue Event is emitted unconditionally, even when no change occurs
    emit ValidatorStatusUpdated(validatorId, newActiveStatus, validator.slashed);
}

hashtag
Impact

Off-chain systems that rely on events to track validator status transitions will receive misleading notifications indicating a status change when none happened. This may lead to incorrect UI/state, automation triggers, or alerting based on presumed changes.

hashtag
Recommendation

Emit the event only when the status actually changes. Additionally, consider reverting or returning an error when an admin attempts to set the status to the same value (to avoid confusing off-chain logic). Example modification:

(Keep error type/naming consistent with the project's patterns if adopting a revert.)

hashtag
Proof of Concept

1

Assume validator ID 1 exists with active = true.

2

An admin calls ValidatorFacet::setValidatorStatus(1, true) (setting to the same status).

3

The code checks if (currentStatus != newActiveStatus), which evaluates to false, so no state changes occur.

4

Despite no change, the function still emits: ValidatorStatusUpdated(1, true, slashed).

5

External systems monitoring these events would incorrectly believe the validator's status changed.

Previous50924 sc high validators are not able to claim their accrued commission when the reward token is removed Next51180 sc medium function is vulnerable to gas griefing

Was this helpful?