c4-judge
commented
1 year ago Picodes marked the issue as duplicate of #400
Closed code423n4 closed 1 year ago
c4-judge
commented
1 year ago Picodes marked the issue as duplicate of #400
c4-judge
commented
1 year ago Picodes changed the severity to 2 (Med Risk)
c4-judge
commented
1 year ago Picodes marked the issue as satisfactory
c4-judge
commented
1 year ago Picodes changed the severity to QA (Quality Assurance)
Lines of code
https://github.com/code-423n4/2023-06-stader/blob/9f1fc1217510b4f78e59c0fe854a3c2b64db963a/contracts/StaderStakePoolsManager.sol#L140
Vulnerability details
The Pools Manager is vulnerable to an inflation attack.
Impact
Frontrunning to affect the supply by providing a donation.
Tools Used
Manual review
Recommended Mitigation Steps
_convertToAssets()functionAssessed type
ERC4626