DOS with Failed Call

Denial of Service (DOS) with Revert happens when external calls fail accidentally or deliberately. Revert can result the caller to stuck or unable to complete.

SWC-113 - DoS with Failed Call

Remediation

Avoid combining multiple calls within a single transaction, particularly when calls are executed iteratively.
Always operate under the assumption that external calls have the potential to fail.

Metadata

Severity: high
Slug: dos-with-failed-call

CWEs

703: Improper Check or Handling of Exceptional Conditions

OWASP

A04:2021: Insecure Design

Available Labs

Open Solidity labs in SecDim Play for this vulnerability.

easy

Auction.sol

Solidity Easy Signature

Play AppSec WarGames

Want to skill-up in secure coding and AppSec? Try SecDim Wargames to learn how to find, hack and fix security vulnerabilities inspired by real-world incidents.

For Companies Play Now

Got a comment?

Join our secure coding and AppSec community. A discussion board to share and discuss all aspects of secure programming, AppSec, DevSecOps, fuzzing, cloudsec, AIsec code review, and more.