-
# Lines of code
https://github.com/code-423n4/2024-04-renzo/blob/519e518f2d8dec9acf6482b84a181e403070d22d/contracts/Withdraw/WithdrawQueue.sol#L229
# Vulnerability details
## Impact
Holders of wBE…
-
### Overview
Currently, the `tangle-dapp` connects to the `Tangle Testnet` by default. However, we should enable users to connect to various networks, including:
- Tangle Mainnet
- Tangle Testn…
-
araj
high
# Missing access control in `addOperator()` in OperatorRegistryV1Admin library
## Summary
Only owner should `add operators` to the system but anyone can add operators as it lacks `access …
-
Bauer
medium
# Revert on Large Approvals & Transfers
## Summary
Some tokens (e.g. UNI, COMP) revert if the value passed to approve or transfer is larger than uint96.
## Vulnerability Detail
In th…
-
cheatcode
medium
# Potential Disruption in Epoch Lifecycle Management
## Summary
The absence of time-based constraints on epoch settlements and withdrawal processing can lead to unpredictable lifec…
-
giraffe
medium
# rebalance() check that caller must be EOA may become ineffective which opens up attack vectors
## Summary
`(msg.sender != tx.origin)` may become an ineffective check if EIP 3074 go…
-
# Lines of code
https://github.com/code-423n4/2024-04-renzo/blob/519e518f2d8dec9acf6482b84a181e403070d22d/contracts/RestakeManager.sol#L274
https://github.com/code-423n4/2024-04-renzo/blob/519e518f2d…
-
smbv-1923
high
# Loss of VVV tokens for users who staked ETH for 6 months and 1 year while claiming VVV tokens using claimVvv()
## Summary
Users who staked ETH for time duration of `SixMonths` and …
-
# Overview
If we're blocking these calls, we must ensure they are ONLY blocked when the validator is also restaking on active roles. There's logic here that needs to be documented and audited. Otherw…
-
Avci
high
# `RioLRTassetregistery.sol` initialize function will revert.
## Summary
`RioLRTassetregistery.sol` initialize function will revert.
## Vulnerability Detail
The initialize function in co…