H-09 Unmitigated

mediumCode4rena

Lines of code

Vulnerability details

Issue not mitigated

About the problem

In the report i have described some vaults that will not work in the designed system. Example of such vault will be any vault that has withdraw limit. In this case _yieldVault.maxWithdraw call will not return actual amount of assets in the underlying vault and because of that, vault will become undercollateralized. Another example of vaults that will not work are vaults that take fees. Such vaults will become undercollateralized at first deposit.

I didn't see that protocol has acknowledged issue(it looks like they tried to fix it) and i don't see how it's possible to fix this issue in the code, looks like the only option currently is to not create Vaults with some specific underlying vaults, that has withdraw limit or other restrictions.

Solution

Need to have a list of protocols that will not work.

OneBugPerDay.com

To all the whitehats, we salute you

Legal

Advertise with us Privacy Policy Terms of Service Cookie Policy Acceptable Use

Unsubscribe

Unsubscribe from all emails Confirm unsubscribe via code

Subscribe via form Confirm subscription via code Change your Preferences

Made by Alex The Entreprenerd Vulnerabilities database by TinTinWeb