Closed code423n4 closed 3 years ago
cmichel
The Synth.burnSynth function can be called by anyone but it should only be called from a pool, like mintSynth.
Synth.burnSynth
mintSynth
An attacker can attempt to burn tokens in the synth contract, but it should fail as the LP debt / balance is always zero for non-pools.
Add the onlyPool modifier to burnSynth.
onlyPool
burnSynth
Duplicate of #70
SamusElderg
commented
3 years ago SamusElderg
commented
3 years ago
Handle
cmichel
Vulnerability details
Vulnerability Details
The
Synth.burnSynthfunction can be called by anyone but it should only be called from a pool, likemintSynth.Impact
An attacker can attempt to burn tokens in the synth contract, but it should fail as the LP debt / balance is always zero for non-pools.
Recommended Mitigation Steps
Add the
onlyPoolmodifier toburnSynth.