search

hats-finance / Intuition-0x538dbadc50cc87b281cd655f1edbc6ebda02a66a

The smart contracts of the Intuition protocol v1.
https://intuition.systems
Other
0 stars 1 forks source link

Missing zero address checks #59

Open hats-bug-reporter[bot] opened 5 days ago

hats-bug-reporter[bot] commented 5 days ago

Github username: @mhhacker111 Twitter username: -- Submission hash (on-chain): 0x445eb382372321b924749dba71eca2f4f94ea68f888344b4fab27524ae3b439f Severity: low

Description: Description\ Parameter target in function _call at TurboMaster.sol are not checking whether the supplied address!=0 Attack Scenario\ Please add a line: require(target != address(0), "Target address cannot be zero");

https://github.com/hats-finance/Intuition-0x538dbadc50cc87b281cd655f1edbc6ebda02a66a/blob/e317b18b39c80374e7998d790e418f762f26d8c8/src/AtomWallet.sol#L162

Remediation\

function _call(address target, uint256 value, bytes memory data) internal { require(target != address(0), "Target address cannot be zero"); ................................

mihailo-maksa commented 4 days ago

The reported issue concerning the lack of a zero address check for the target parameter in the _call function within TurboMaster.sol has been reviewed. Here is our detailed response:

Out of Scope: The contract TurboMaster.sol is not within the scope of the current audit competition. This report seems to reference a contract that is unrelated to the codebase being audited.

Possible Misplacement: It appears that this issue might have been intended for a different competition or context. We recommend verifying the context and resubmitting it to the appropriate competition if applicable.

Conclusion: As TurboMaster.sol is not part of the codebase under review, we consider this issue to be out of scope and not applicable to the current audit competition.

Status: This issue is invalid.