Open code423n4 opened 3 years ago
tabish
Detailed description of the impact of this finding.
The input toLock in the manualRebalance function should in terms of BPS else toLock should be changed accordingly in the function. The comments incorrectly indicate the range in which the input toLock should be given. https://github.com/code-423n4/2021-09-bvecvx/blob/1d64bd58c7a4224cc330cef283561e90ae6a3cf5/veCVX/contracts/veCVXStrategy.sol#L443
toLock
manualRebalance
In the comments toLock should be = 10_000 as we are comparing with MAX_BPS https://github.com/code-423n4/2021-09-bvecvx/blob/1d64bd58c7a4224cc330cef283561e90ae6a3cf5/veCVX/contracts/veCVXStrategy.sol#L446
MAX_BPS
Agree, comment is wrong
GalloDaSballo
commented
3 years ago GalloDaSballo
commented
3 years ago
Handle
tabish
Vulnerability details
Impact
Detailed description of the impact of this finding.
The input
toLockin themanualRebalancefunction should in terms of BPS elsetoLockshould be changed accordingly in the function. The comments incorrectly indicate the range in which the inputtoLockshould be given. https://github.com/code-423n4/2021-09-bvecvx/blob/1d64bd58c7a4224cc330cef283561e90ae6a3cf5/veCVX/contracts/veCVXStrategy.sol#L443Recommended Mitigation Steps
In the comments
toLockshould be = 10_000 as we are comparing withMAX_BPShttps://github.com/code-423n4/2021-09-bvecvx/blob/1d64bd58c7a4224cc330cef283561e90ae6a3cf5/veCVX/contracts/veCVXStrategy.sol#L446