PartyA can control liquidations in liquidatePartyA
Summary
PartyA can control who becomes the liquidator and cause issues and reverting
Vulnerability Detail
The PartyA Can control who becomes the liquidator by deallocating and relocating in back-running and frontrunning way
steps:
PartyA is underWater by -5 and they relocate 5 and they deallocate 5 and get back to the underwater state they can fronrun and backrun causing the liquidator to revert
simon135
high
PartyA can control liquidations in
liquidatePartyA
Summary
PartyA can control who becomes the liquidator and cause issues and reverting
Vulnerability Detail
The PartyA Can control who becomes the liquidator by deallocating and relocating in back-running and frontrunning way steps: PartyA is underWater by -5 and they relocate 5 and they deallocate 5 and get back to the underwater state they can fronrun and backrun causing the liquidator to revert
Impact
https://github.com/sherlock-audit/2023-06-symmetrical/blob/6d2b64b6732fcfbd07c8217897dd233dbb6cd1f5/symmio-core/contracts/facets/liquidation/LiquidationFacetImpl.sol#L24 The impact is reverted and controlled when they get liquidated
Code Snippet
Tool used
Manual Review
Recommendation
add a solvent check to allocate so PartyA cant top up and top down their positions causing a loss
Duplicate of #233