code-423n4 2022-04-dualityfocus-findings issues

code-423n4 / 2022-04-dualityfocus-findings

1 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

UniV3LpVault flash loans can become unavailable if a user didn't utilized the full limit

#46 code423n4 closed 2 years ago
2
Consistently check account balance before and after transfers for Fee-On-Transfer discrepancies

#45 code423n4 closed 2 years ago
2
FlashLoan can miss borrowed funds repayment

#44 code423n4 closed 2 years ago
2
QA Report

#43 code423n4 opened 2 years ago
0
QA Report

#42 code423n4 opened 2 years ago
3
QA Report

#41 code423n4 opened 2 years ago
2
Return value of `transfer()`/`transferFrom()` is not checked

#40 code423n4 closed 2 years ago
2
Not calling `approve(0)` before setting a new approval causes the call to revert when used with Tether (USDT)

#39 code423n4 opened 2 years ago
1
Forcing `IERC20` when calling `transfer()`/`transferFrom()` reverts when used with some ERC20 tokens

#38 code423n4 closed 2 years ago
2
Unchecked low level `call()`s

#37 code423n4 closed 2 years ago
2
QA Report

#36 code423n4 opened 2 years ago
1
QA Report

#35 code423n4 opened 2 years ago
0
QA Report

#34 code423n4 opened 2 years ago
0
QA Report

#33 code423n4 opened 2 years ago
3
QA Report

#32 code423n4 opened 2 years ago
0
Arbitrary contract call within `UniV3LpVault._swap` with controllable `swapPath`

#31 code423n4 opened 2 years ago
2
QA Report

#30 code423n4 opened 2 years ago
0
Dysfunctional `CToken._acceptAdmin` due to lack of function to assign `pendingAdmin`

#29 code423n4 opened 2 years ago
1
`Comptroller._setUniV3LpVault` will always cause in-use uniswapV3 positions to become stuck in `UniV3LpVault`

#28 code423n4 opened 2 years ago
2
addNFTCollateral may be failed if there are too many Uniswap V3 LP Vault

#27 code423n4 closed 2 years ago
2
QA Report

#26 code423n4 opened 2 years ago
0
Improper Access Control

#25 code423n4 opened 2 years ago
1
redeemfresh reentry

#24 code423n4 closed 2 years ago
1
QA Report

#23 code423n4 opened 2 years ago
3
QA Report

#22 code423n4 opened 2 years ago
2
Must approve 0 first

#21 code423n4 closed 2 years ago
1
Re-entry possibility

#20 code423n4 closed 2 years ago
2
QA Report

#19 code423n4 opened 2 years ago
0
Gas Optimizations

#18 code423n4 closed 2 years ago
0
ERC777 & Gnosis Chain Bridge Tokens Re-entrancy Vulnerability

#17 code423n4 closed 2 years ago
2
QA Report

#16 code423n4 opened 2 years ago
0
No ERC20 safe* versions called

#15 code423n4 closed 2 years ago
1
Wrong authorization for `CToken._setNameAndSymbol`

#14 code423n4 closed 2 years ago
1
Transferring admins does not work for CToken

#13 code423n4 closed 2 years ago
2
Undercollateralized loans possible

#12 code423n4 opened 2 years ago
2
QA Report

#11 code423n4 opened 2 years ago
0
QA Report

#10 code423n4 closed 2 years ago
0
Gas Optimizations

#9 code423n4 closed 2 years ago
1
QA Report

#8 code423n4 opened 2 years ago
0
Unauthorized ERC20 changes

#7 code423n4 closed 2 years ago
1
Front running attack in approve.

#6 code423n4 closed 2 years ago
1
Gas Optimizations

#5 code423n4 closed 2 years ago
0
QA Report

#4 code423n4 opened 2 years ago
0
Missing Slippage Protection

#3 code423n4 closed 2 years ago
1
Use safeTransfer/safeTransferFrom consistently instead of transfer/transferFrom

#2 code423n4 closed 2 years ago
2
Gas Optimizations

#1 code423n4 closed 2 years ago
0