Security Researcher
Web3 Security Researcher | Warden at @code4rena Check my findings at https://t.co/SW3b4GX15C DM for solo/private audit
High
Total
Medium
Solo
Total
Total Earnings
#70 All Time
Payouts
1st Places
2nd Places
3rd Places
All
Sherlock
Code4rena
Cantina
Oct '24
high
medium
medium
Mar '24
Jan '24
high
medium
medium
medium
Oct '23
Sep '23
Jul '23
high
Ability to steal user funds and increase collateral share infinitely in BigBang and Singularity
high
Incorrect solvency check because it multiplies collateralizationRate by share not amount when calculating liquidation threshold
high
Funds are locked because borrowFee is not correctly implemented in BigBang
medium
[MC01] Market liquidations can revert due to arithmetic underflow
medium
All liquidated collateral can be stolen from Singularity and Big Bang
May '23
high
Overpaying remaining gas to the user or failing anyExecute call due to incorrect gas unit calculation in BranchBridgeAgent
high
The difference between gasLeft and gasAfterTransfer is greater than TRANSFER_OVERHEAD causing `anyExecute` to fail always
high
MIN_FALLBACK_RESERVE (in BranchBridgeAgent) doesn't consider the actual gas consumption in AnyCall contracts which let the user underpay the actual cost when replenishing the execution budget
high
Cross-chain messaging via Anycall will fail
medium
Unstaking `vMAIA` tokens on the first Tuesday of the month can be offset
medium
The user is enforced to overpay for the fallback gas when `retryDeposit`
medium
Replenishing gas is missing in `_payFallbackGas` of RootBridgeAgent
high
User can exponentially increase the value of their position through the memorializePositions function
high
The lender could possibly lose unclaimed rewards in case a bucket goes bankrupt
high
Incorrect calculation of the remaining updatedRewards leads to possible underflow error
high
PositionManager's moveLiquidity can freeze funds by removing destination index even when the move was partial
Apr '23
high
PrivatePool owner can steal all ERC20 and NFT from user via arbitrary execution
medium
The `royaltyRecipient` could not be prepare to receive ether, making the `sell` to fail
medium
Loss of funds for traders due to accounting error in royalty calculations
medium
`changeFeeQuote` will fail for low decimal ERC20 tokens
Mar '23
Feb '23
high
accruePremiumAndExpireProtections is vulnerable to DDoS
high
Missing validation of snapshotId makes it possible for the investor to claim unlocked capitals from the same snapshot multiple times
high
Calculating the claimable amount across all locked capitals for a given seller and a lending pool returns only the amount of the last unlocked capital
Jan '23
high
Attacker can take loan for Victim
high
Wrong starting price when listing on Seaport for assets that has less than 18 decimals
high
Anyone can wipe complete state of any collateral at any point
high
Lack of StrategyDetailsParam.vault validation allows the borrower to steal all the funds from the vault
high
Improper validations in Clearinghouse. possible to lock collateral NFT in contract.
high
Arbitrary transactions possible due to insufficient signature validation
high
Replay attack (EIP712 signed transaction)
high
Destruction of the `SmartAccount` implementation
medium
SmartAccount.sol is intended to be upgradable but inherits from contracts that contain storage and no gaps
medium
[Medium-3] Non-compliance with EIP-4337
Dec '22
Nov '22