issues
search
code-423n4
/
2022-06-connext-findings
1
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
fund lose because of wrong transferId calculation in protocol contracts in different domains because of not synced storage values
#227
code423n4
closed
1 year ago
6
Gas Optimizations
#226
code423n4
opened
2 years ago
0
attacker can perform griefing for process() in PromiseRouter by reverting calls to callback() in callbackAddress
#225
code423n4
opened
2 years ago
3
Gas Optimizations
#224
code423n4
closed
2 years ago
2
Current implementation of arbitrary call execute failure handler may break some use case for example NFT bridge.
#223
code423n4
opened
2 years ago
7
In execute() the amount routers pay is what user signed, but in _reconcile() the amount routers get is what nomad sends and this two amount are not necessary equal because of slippage in original domain
#222
code423n4
opened
2 years ago
4
Price can be stale
#221
code423n4
closed
2 years ago
3
Relayer Will Not Receive Any Fee If `execute` Reverts
#220
code423n4
opened
2 years ago
3
Price fetched from Dex can be manipulated
#219
code423n4
closed
2 years ago
3
User Funds Will Be Locked If Messaging Layer Is Down
#218
code423n4
closed
1 year ago
4
Destination Contract Will Not Receive Their Tokens
#217
code423n4
closed
1 year ago
2
function removeRouter() in RouterFacet don't check that router has balance and don't transfer it, it just set router owner and recipient to 0x0 which can cause make router balance in danger or unavailable for router owner
#216
code423n4
closed
2 years ago
1
`LibDiamond.diamondCut()` should check `diamondStorage().acceptanceTimes[keccak256(abi.encode(_diamondCut))] != 0`
#215
code423n4
opened
2 years ago
2
QA Report
#214
code423n4
opened
2 years ago
1
division rounding error in _handleExecuteLiquidity() and _reconcile() make routerBalances and contract fund balance to get out of sync and cause fund lose
#213
code423n4
opened
2 years ago
4
QA Report
#212
code423n4
opened
2 years ago
2
`routerBalances[msg.sender][_local]` can be inflated in `repayAavePortal` due to underflow in unchecked math
#211
code423n4
closed
2 years ago
2
Gas Optimizations
#210
code423n4
opened
2 years ago
0
Gas Optimizations
#209
code423n4
opened
2 years ago
1
QA Report
#208
code423n4
opened
2 years ago
1
QA Report
#207
code423n4
closed
2 years ago
1
`getPriceFromDex()` Using `balanceOf` to get price from dex can easily be manipulated
#206
code423n4
closed
2 years ago
5
Lack of timestamp in `setDirectPrice()` and price freshness check in `getTokenPrice()` may cause a stale price to be used
#205
code423n4
closed
1 year ago
5
Tokens with `decimals` larger than `18` are not supported
#204
code423n4
opened
2 years ago
6
QA Report
#203
code423n4
opened
2 years ago
2
Wrong implementation of `withdrawAdminFees()` can cause the `adminFees` to be charged multiple times and therefore cause users' fund loss
#202
code423n4
opened
2 years ago
2
QA Report
#201
code423n4
opened
2 years ago
0
Gas Optimizations
#200
code423n4
opened
2 years ago
0
Timelock able to be bypassed because of wrong check in `LibDiamond`
#199
code423n4
closed
2 years ago
1
QA Report
#198
code423n4
opened
2 years ago
2
Gas Optimizations
#197
code423n4
opened
2 years ago
0
_handleExecuteTransaction may not working correctly on fee-on-transfer tokens. Moreover, if it is failed, fund may be locked forever.
#196
code423n4
opened
2 years ago
4
Gas Optimizations
#195
code423n4
opened
2 years ago
0
QA Report
#194
code423n4
opened
2 years ago
4
QA Report
#193
code423n4
opened
2 years ago
1
QA Report
#192
code423n4
opened
2 years ago
1
`getPriceFromDex()` in `ConnextPriceOracle.sol` will always fail for tokens with more than 18 decimals due to airthmetic underflow
#191
code423n4
closed
2 years ago
4
QA Report
#190
code423n4
opened
2 years ago
6
reimburseRelayFee calculation doesn't check for 0 denominator when oracle is set
#189
code423n4
closed
1 year ago
5
Gas Optimizations
#188
code423n4
opened
2 years ago
0
Oracle data feeds are insufficiently validated
#187
code423n4
closed
2 years ago
3
QA Report
#186
code423n4
opened
2 years ago
5
Gas Optimizations
#185
code423n4
opened
2 years ago
1
QA Report
#184
code423n4
opened
2 years ago
0
QA Report
#183
code423n4
opened
2 years ago
3
Underflow if TOKEN DECIMALS are greater than 18
#182
code423n4
closed
2 years ago
4
BridgeFacet's _executePortalTransfer ignores underlying token amount withdrawn from Aave pool
#181
code423n4
opened
2 years ago
3
QA Report
#180
code423n4
opened
2 years ago
1
Gas Optimizations
#179
code423n4
opened
2 years ago
0
QA Report
#178
code423n4
opened
2 years ago
2
Previous
Next