c4-judge
commented
1 year ago 0xleastwood marked the issue as duplicate of #18
Open c4-submissions opened 1 year ago
c4-judge
commented
1 year ago 0xleastwood marked the issue as duplicate of #18
c4-judge
commented
1 year ago 0xleastwood marked the issue as satisfactory
c4-judge
commented
1 year ago 0xleastwood changed the severity to 3 (High Risk)
c4-judge
commented
1 year ago 0xleastwood changed the severity to QA (Quality Assurance)
c4-judge
commented
1 year ago This previously downgraded issue has been upgraded by 0xleastwood
c4-judge
commented
1 year ago 0xleastwood marked the issue as not a duplicate
c4-judge
commented
1 year ago 0xleastwood changed the severity to QA (Quality Assurance)
c4-judge
commented
1 year ago 0xleastwood removed the grade
c4-sponsor
commented
12 months ago elmutt (sponsor) confirmed
Lines of code
https://github.com/code-423n4/2023-09-asymmetry/blob/main/contracts/AfEth.sol#L176
Vulnerability details
Impact
AfEth.requestWithdraw function calculates withdraw time incorrectly, which cause user to wait more time to receive funds.
Proof of Concept
When user wants to withdraw, then he needs to initiate
requestWithdraw. As some part of funds are locked as cvx token inside vlcvx that means that they should be withdrawn. When you lock cvx then amount is locked for some period, so you can't withdraw it for that time.For such reason
withdrawTimefunction exists, which purpose is to calculate time when needed amount will be available to withdraw.The problem is that
AfEth.requestWithdrawfunction checks when it will be possible to withdraw wholeamount. But as afEth consists of 2 tokens that means that only part ofamountshould be withdrawn from votium strategy. And this amount isvotiumWithdrawAmount.Because of that mistake user may wait more time to get his funds.
Tools Used
VsCode
Recommended Mitigation Steps
Calculate withdraw time for
votiumWithdrawAmountonly.Assessed type
Error