I recently discovered a critical vulnerability in **Deri **which allows an attacker to forcefully liquidate a trader’s position and steal his precious computer coins from his margin vault. Weaknesses: 1) signature replay 2) incorrect decimals Tell us more … Deri is a derivatives protocol deployed across zksync Era, Linea, Arbitrum, Polygon ZkEVM, and Scroll with a TVL of ~$3mm. Users interact with the protocol by making a request to add/remove margin, trade, remove liquidity, etc. through the...