Open code423n4 opened 1 year ago
0xSorryNotSorry marked the issue as primary issue
This is an informational-level issue. We failed to update this statement in the higher-level documentation. This check is not necessary.
Sidu28 marked the issue as disagree with severity
The 4 logical paths seem to cover the possible scenarios
In lack of further info, am downgrading to QA
L
GalloDaSballo changed the severity to QA (Quality Assurance)
GalloDaSballo marked the issue as grade-a
Lines of code
https://github.com/code-423n4/2023-04-eigenlayer/blob/398cc428541b91948f717482ec973583c9e76232/src/contracts/pods/EigenPod.sol#L364
Vulnerability details
Impact
Detailed description of the impact of this finding. Missing validation to a threshold value on full withdrawal.
Proof of Concept
Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept. According to the docs there suppose to be a validation against a const on full withdrawal, but its missing which lead to system not work as expected.