Closed sherlock-admin4 closed 1 month ago
Petite Flint Nuthatch
Low/Info
Voter
emitWithdraw()
In Voter contract, emitDeposit() function has an access control which restricts msg.sender, however emitWithdraw() doesn't have such.
emitDeposit()
anyone can call emitWithdraw() to add withdraw log for arbitrary account.
If developer relys on emit log to do some offchain work, then an attacker may exploit it to mess the record.
https://github.com/sherlock-audit/2024-06-velocimeter/blob/63818925987a5115a80eff4bd12578146a844cfd/v4-contracts/contracts/Voter.sol#L449-L451
Manual Review
add require(isGauge[msg.sender]); and require(isAlive[msg.sender]);
require(isGauge[msg.sender]);
require(isAlive[msg.sender]);
Petite Flint Nuthatch
Low/Info
Voter::emitWithdraw()lacks of access controlSummary
In
Votercontract,emitDeposit()function has an access control which restricts msg.sender, howeveremitWithdraw()doesn't have such.Vulnerability Detail
anyone can call
emitWithdraw()to add withdraw log for arbitrary account.Impact
If developer relys on emit log to do some offchain work, then an attacker may exploit it to mess the record.
Code Snippet
https://github.com/sherlock-audit/2024-06-velocimeter/blob/63818925987a5115a80eff4bd12578146a844cfd/v4-contracts/contracts/Voter.sol#L449-L451
Tool used
Manual Review
Recommendation
add
require(isGauge[msg.sender]);andrequire(isAlive[msg.sender]);