Skip to content
This repository has been archived by the owner on Nov 26, 2023. It is now read-only.

Issues: sherlock-audit/2023-05-USSD-judging

22 Open 948 Closed
22 Open 948 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

WATCHPUG - Lack of Redeem Feature Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#958 opened May 24, 2023 by sherlock-admin
8
WATCHPUG - Oracle price should be denominated in DAI instead of USD Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#909 opened May 24, 2023 by sherlock-admin
5
neumo - If collateral factor is high enough, flutter ends up being out of bounds Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#889 opened May 24, 2023 by sherlock-admin
5
WATCHPUG - Using the collateral assets' oracle price at 100% of its value to mint USSD without a fee can be used for arbitrage. Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue
#836 opened May 24, 2023 by sherlock-admin
7
WATCHPUG - Wrong Oracle feed addresses Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#817 opened May 24, 2023 by sherlock-admin
WATCHPUG - Uniswap v3 pool token balance proportion does not necessarily correspond to the price, and it is easy to manipulate. Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#808 opened May 24, 2023 by sherlock-admin
10
WATCHPUG - Lack of access control for mintRebalancer() and burnRebalancer() Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#777 opened May 24, 2023 by sherlock-admin
Proxy - Not using slippage parameter or deadline while swapping on UniswapV3 Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#673 opened May 24, 2023 by sherlock-admin
T1MOH - BuyUSSDSellCollateral() always sells 0 amount if need to sell part of collateral Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#656 opened May 24, 2023 by sherlock-admin
5
RaymondFam - Risk of Incorrect Asset Pricing by StableOracle in Case of Underlying Aggregator Reaching minAnswer Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#598 opened May 24, 2023 by sherlock-admin
0xRobocop - Wrong computation of the amountToSellUnit variable Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#535 opened May 24, 2023 by sherlock-admin
0xRobocop - Inconsistency handling of DAI as collateral in the BuyUSSDSellCollateral function Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#515 opened May 24, 2023 by sherlock-admin
5
carrotsmuggler - Price calculation susceptible to flashloan exploits Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#451 opened May 23, 2023 by sherlock-admin
Bauer - Inaccurate collateral factor calculation due to missing collateral asset Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#341 opened May 23, 2023 by sherlock-admin
Bauchibred - StableOracleWBTC use BTC/USD chainlink oracle to price WBTC which is problematic if WBTC depegs Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#310 opened May 23, 2023 by sherlock-admin
8
Dug - The price from StableOracleDAI is returned with the incorrect number of decimals Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#236 opened May 23, 2023 by sherlock-admin
Bauer - The getOwnValuation() function contains errors in the price calculation Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#222 opened May 23, 2023 by sherlock-admin
J4de - USSDRebalancer.sol#SellUSSDBuyCollateral the check of whether collateral is DAI is wrong Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#193 opened May 23, 2023 by sherlock-admin
saidam017 - rebalance process incase of selling the collateral, could revert because of underflow calculation Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#111 opened May 23, 2023 by sherlock-admin
1
juancito - StableOracleDAI calculates getPriceUSD with inverted base/rate tokens for Chainlink price Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue
#102 opened May 23, 2023 by sherlock-admin
7
Kose - Because of missing slippage parameter, mintForToken() can be front-runned Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#97 opened May 23, 2023 by sherlock-admin
3
dacian - Calls to Oracles don't check for stale prices Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue
#31 opened May 23, 2023 by sherlock-admin
ProTip! Type g i on any issue or pull request to go back to the issue listing page.