neumoxx
commented
1 year ago I just saw I'm absolutely wrong in this report, apologies, you can move on to the next, nothing to see here 👎
Open hats-bug-reporter[bot] opened 1 year ago
neumoxx
commented
1 year ago I just saw I'm absolutely wrong in this report, apologies, you can move on to the next, nothing to see here 👎
walk-on-me
commented
1 year ago Hello, Yes , thanks a lot for your participation !
Github username: @neumoxx Submission hash (on-chain): 0xfd049598e2336c8b8b1da4857b29d3a62b5db2f734a542092deab633b86fff66 Severity: high
Description:
Vulnerability Report
Description
Function
_getAndVerifyOracleAndAggregatorPricesin theCvgOraclecontract does an incorrect check for wether the price is stale or not. https://github.com/hats-finance/Convergence-Finance---IBO-0x0e410e7af8e70fc5bffcdbfbdf1673ee7b3d0777/blob/f43c5d9bc6b30c9f488e34836f09dc04d8f7361f/contracts/Oracles/CvgOracle.sol#L279-L293The following line:
Is actually reverting when the price is NOT stale.
The line should instead be:
Attachments
As seen above, all calls to
_getAndVerifyOracleAndAggregatorPriceson a token with a non-stale price will revert. That means all functions that call it will also revert for non-stale prices. These are:The first two are not called in the rest of the codebase (although they could cause problems in third party / front end integrations), but the last one is called in the
depositfunction of theIbocontract.https://github.com/hats-finance/Convergence-Finance---IBO-0x0e410e7af8e70fc5bffcdbfbdf1673ee7b3d0777/blob/f43c5d9bc6b30c9f488e34836f09dc04d8f7361f/contracts/PresaleVesting/Ibo.sol#L175-L179
This means all calls to
depositwill revert for tokens with a non-stale price (and if the price is stale the call can succeed, with the dangers of using a stale price in a deposit).