Missing low-level call success check

[code423n4]

Handle

cmichel

Vulnerability details

The MochiVaultProxy.updateTemplate performs a low-level call to beacon and does not check the success return value.

Impact

If the beacon is set to the wrong address and the call fails, it will not be noticeable.

Recommended Mitigation Steps

Check for success for the address(beacon).call(abi.encode(_newTemplate)) call.

[r2moon]

duplicated with https://github.com/code-423n4/2021-10-mochi-findings/issues/76