Skip to content
This repository has been archived by the owner on Dec 17, 2023. It is now read-only.

Issues: sherlock-audit/2023-05-perennial-judging

17 Open 228 Closed
17 Open 228 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

BLACK-PANDA-REACH - BalancedVault doesn't consider potential break in one of the markets Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#232 opened Jun 15, 2023 by sherlock-admin
7
AkshaySrivastav - Liquidators can prevent users from making their positions healthy during an unpause Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Won't Fix The sponsor confirmed this issue will not be fixed
#190 opened Jun 15, 2023 by sherlock-admin
6
tvdung94 - Users can be forced to claim assets at bad rate in some cases Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#174 opened Jun 15, 2023 by sherlock-admin
3
mstpr-brainbot - Unintended Vault Operation Due to Product Settling and Oracle Version Skips Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Will Fix The sponsor confirmed this issue will be fixed
#152 opened Jun 15, 2023 by sherlock-admin
15
Emmanuel - Accounts will not be liquidated when they are meant to. Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#132 opened Jun 15, 2023 by sherlock-admin
2
cergyk - Leveraged trader with small collateral can create a riskless position until settlement Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Won't Fix The sponsor confirmed this issue will not be fixed
#104 opened Jun 15, 2023 by sherlock-admin
7
Emmanuel - User would liquidate his account to sidestep takerInvariant modifier Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#77 opened Jun 15, 2023 by sherlock-admin
15
cergyk - A trader close to liquidation risks being liquidated by trying to reduce her position Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#76 opened Jun 15, 2023 by sherlock-admin
16
cergyk - Malicious trader can bypass utilization buffer Disagree With Severity The sponsor disputed the severity of this issue Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Won't Fix The sponsor confirmed this issue will not be fixed
#75 opened Jun 15, 2023 by sherlock-admin
13
roguereddwarf - BalancedVault.sol: claim can be impossible due to unsigned integer underflow Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#57 opened Jun 15, 2023 by sherlock-admin
9
roguereddwarf - BalancedVault.sol: Early depositor can manipulate exchange rate and steal funds Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Won't Fix The sponsor confirmed this issue will not be fixed
#46 opened Jun 15, 2023 by sherlock-admin
10
roguereddwarf - BalancedVault.sol: loss of funds + global settlement flywheel / user settlement flywheels getting out of sync Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#45 opened Jun 15, 2023 by sherlock-admin
1
mstpr-brainbot - If long and short products has different maker fees, vault rebalance can be spammed to eat vaults balance Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#41 opened Jun 15, 2023 by sherlock-admin
8
roguereddwarf - Payoff definitions that can cross zero price are not supported Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#40 opened Jun 15, 2023 by sherlock-admin
32
mstpr-brainbot - Market Allows Zero Amount Positions Which Can Cause Vault Rebalancing to Revert Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#39 opened Jun 15, 2023 by sherlock-admin
8
roguereddwarf - Missing Sequencer Uptime Feed check can cause unfair liquidations on Arbitrum Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Won't Fix The sponsor confirmed this issue will not be fixed
#37 opened Jun 15, 2023 by sherlock-admin
6
roguereddwarf - ChainlinkAggregator: binary search for roundId does not work correctly and Oracle can even end up temporarily DOSed Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#4 opened Jun 15, 2023 by sherlock-admin
10
ProTip! Updated in the last three days: updated:>2025-01-18.