Open GalloDaSballo opened 3 months ago
https://github.com/blkswnStudio/ap/blob/8fab2b32b4f55efd92819bd1d0da9bed4b339e87/packages/contracts/contracts/BorrowerOperations.sol#L614-L620
function claimUnassignedAssets( uint _percentage, address _upperHint, address _lowerHint, bytes[] memory _priceUpdateData ) external payable override { if (_percentage == 0) revert ZeroDebtChange();
Maybe abused for exploit, I haven't spent a lot of time on this, it's best to cap it to 1e18 to avoid any additional risk
if (_percentage > DECIMAL_PRECISION) revert Above100Pct();
sambP
commented
2 months ago sambP
commented
2 months ago
Impact
https://github.com/blkswnStudio/ap/blob/8fab2b32b4f55efd92819bd1d0da9bed4b339e87/packages/contracts/contracts/BorrowerOperations.sol#L614-L620
Maybe abused for exploit, I haven't spent a lot of time on this, it's best to cap it to 1e18 to avoid any additional risk
Mitigation