c4-pre-sort
commented
3 months ago raymondfam marked the issue as insufficient quality report
Closed c4-bot-10 closed 3 months ago
c4-pre-sort
commented
3 months ago raymondfam marked the issue as insufficient quality report
raymondfam
commented
3 months ago Unstructured/insufficient proof.
c4-pre-sort
commented
3 months ago raymondfam marked the issue as primary issue
c4-judge
commented
3 months ago hansfriese marked the issue as unsatisfactory: Insufficient proof
Lines of code
https://github.com/code-423n4/2024-03-dittoeth/blob/main/contracts/facets/BidOrdersFacet.sol#L224
Vulnerability details
Impact
The
matchlowestSellfunction does not account for updating theercAmountof ask orders that are only partially filled by incoming bids, potentially leading to inaccuracies in the displayed order book.Proof of Concept
Github:
Scenario Steps:
An incoming bid order is placed that matches with an existing ask order, but only partially fills it.
The
matchlowestSellfunction is executed for the incoming bid, matching it against the lowest available ask order.In the scenario where an ask order is partially filled, the
matchlowestSellfunction correctly updatesethEscrowedfor the seller and records the filled ERC amount inmatchTotal.askFillErc. However, it fails to adjust the remainingercAmountfor the ask order that remains on the market. This oversight means the order book could display incorrect information about the available quantity for that ask order, potentially misleading future matching attempts.The ask order remains in the order book with its original
ercAmount, not reflecting the partial fill. This could lead to mismatches in the order book, affecting market integrity and participant decision-making.Tools Used
Manual
Recommended Mitigation Steps
Implement a mechanism within
matchlowestSellor at an appropriate point following a partial match, to update the remainingercAmountfor partially filled ask orders.Assessed type
Context