4x
Payouts
2x
Top 10
4x
Top 25
4x
Top 50
All
Sherlock
Cantina
Apr '25
high
`ValueFacet::removeValueSingle()` silently disables fees earnings leads to always `addEarnings(vid,0)` for LP
high
`ValueFacet::removeValueSingle()` charges fees twice, draining extra funds from users
high
Underlying vault fee mis-accounting disables `trimBalance()` earnings distribution
high
ERC-4626 tokens are transferred instead of their underlying asset (`ValueFacet` – `addValue*()` / `removeValue*()` / `addSingleForValue()` / `removeSingleForValue()`)
Mar '25
high
Finding not yet public.
high
Finding not yet public.
Jan '25
high
Incorrect LP token price conversion in spTKNMinimalOracle
medium
Unset `props.sender` in `removeLeverage()` causes Flashloan repayment failure
medium
Double extraction of debond Fee in `_calculateBasePerPTkn()` leading to incorrect price base per pTKN
medium
Incorrect price calculation in `getPodPerBasePrice()` when paired asset is a Fraxlend pair or Pod
high
Auction cannot end due to incorrect period handling
high
Discrepancy between spec and code: redemption of levETH
high
Dust tokens stuck in BalancerRouter during joinBalancerPool
high
Erroneous fee calculation in Pool
medium
Asymmetry between `sharesPerToken` in `Pool.sol` and `BondToken.sol` leads to incorrect coupon distribution
medium
Market rate never used due to decimal discrepancy
medium
Precision loss in `getRedeemAmount` calculation
medium
Unhandled failed auction lead to coupon amount discrepancy and claim failures
medium
BondOracleAdapter can fetch price from inefficient Pool on Aerodrome