As reported by Blockworks, a recent blog post by Asymmetric Research revealed that there is a critical vulnerability in the Cosmos Interchain Communication (IBC) protocol. This vulnerability specifically appears in ibc-go, a Golang high-level programming language implementation of the IBC protocol, and affects the IBC middleware based on CosmWasm. Asymmetric Research found that the process controlled by the module deletion commitment can be replayed, which means it is possible to replay this vulnerability and exploit an unlimited number of IBC tokens. Multiple chains may be affected by this issue, with Osmosis, one of the largest cross-chain DEXs in the Cosmos ecosystem, likely the most affected chain. However, due to the rate limit on the chain, the damage that this vulnerability could cause is limited. According to Asymmetric Research, the vulnerability has been privately disclosed to the Cosmos HackerOne vulnerability bounty program, and the problem itself has been resolved without any malicious exploitation.