CollSurplusPool doesn't verify that the passed _whitelistAddress
is an actual contract addres
#230
Labels
1 (Low Risk)
Assets are not at risk. State handling, function incorrect as to spec, issues with comments
bug
Something isn't working
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
Handle
Ruhum
Vulnerability details
Impact
All the other passed variables are checked. Only
_whitelistAddress
is ignored. This allows passing a zero function which would break the functionality.Proof of Concept
https://github.com/code-423n4/2021-12-yetifinance/blob/main/packages/contracts/contracts/CollSurplusPool.sol#L51-L54
Tools Used
none
Recommended Mitigation Steps
add
checkContract(_whitelistAddress)
The text was updated successfully, but these errors were encountered: