This repository has been archived by the owner on Jan 21, 2024. It is now read-only.
auditsea - AdvancedDistributer - Wrong mechanism around voteFactor and voting power
#3
Comments
github-actions
bot
added
Medium
sherlock-admin
changed the title
AdvancedDistributer - Wrong mechanism around voteFactor and voting powerAdvancedDistributer - Wrong mechanism around voteFactor and voting power
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
auditsea
high
AdvancedDistributer- Wrong mechanism aroundvoteFactorand voting powerSummary
Voting power management using
voteFactoris wrong because thevoteFactorcan change.Vulnerability Detail
In
AdvancedDistributor,voteFactorcan be set by the owner and it can be updated multiple times.This exposes a vulnerability in claiming rewards and calculating voting power.
When
voteFactoris updated to a bigger one, users will not be able to claim their rewards because burning vote tokens will revert.When
voteFactoris updated to a smaller one, users will still have their remaining voting power even after claiming all rewards.Impact
Based on how
voteFactoris changed, claiming / adjustments will not be working or users will have their voting power even though they don't have rewards to claim.Code Snippet
https://github.com/sherlock-audit/2023-06-tokensoft/blob/main/contracts/contracts/claim/abstract/AdvancedDistributor.sol#L181-L183
https://github.com/sherlock-audit/2023-06-tokensoft/blob/main/contracts/contracts/claim/abstract/AdvancedDistributor.sol#L94
https://github.com/sherlock-audit/2023-06-tokensoft/blob/main/contracts/contracts/claim/abstract/AdvancedDistributor.sol#L120
Tool used
Manual Review
Recommendation
Either implement user-specific voting power or overwrite
balanceOffunction to reflectvoteFactorin it.Duplicate of #55
The text was updated successfully, but these errors were encountered: