High
Solo
Total
Medium
Total
Total Earnings
#508 All Time
Payouts
1st Places
2nd Places
3rd Places
All
Sherlock
Code4rena
Cantina
CodeHawks
Hats Finance
May '25
Findings not publicly available for private contests.
Mar '25
Feb '25
high
RAACNFT mint function receives funds to address(this) but has no way of withdrawing them
high
Reward manipulation vulnerability in StabilityPool
high
Incorrect Reward Claim Logic in FeeCollector::claimRewards Causes Denial of Service
high
RToken's transfer function lead to loss of funds due to incorrect math
high
Users can borrow more assets than they have deposited as collateral
high
NFTs Get Permanently Locked in Stability Pool After Liquidation
high
Double Usage Index Scaling in StabilityPool Liquidation Inflates Required CRVUSD Balance
high
Ownership Parameter Mismatch in LendingPool’s Vault Withdrawal Logic
high
Untracked Direct Fee Transfers from RAACToken to FeeCollector Break Fee Distribution System
high
Ineffective Time-Weighted Average Implementation in Fee Distribution
medium
[H-2] Lack of Emergency Pause in `BaseGauge::stake` and `BaseGauge::withdraw
medium
Incorrect utilization rate forces protocol to issue maximum rewards indefinitely
medium
LendingPool deposits do not work with CurveVault due to lack of funds
medium
LendingPool::getNormalizedIncome() returns stale liquidity index
medium
There is no logic checking for RAACNFT price staleness before minting it
medium
`RToken::calculateDustAmount` are incorrectly calculated, leading to not be able to transfer the accrued dust amount
medium
LendingPool.getUserDebt returns outdated value and can lead to liquidation failure
medium
Emergency revoke in RAACReleaseOrchestrator will freeze revoked RAAC tokens in orchestrator
medium
User may not be able to increase the amount of locked RAAC tokens
medium
Due to not counting the assets stake on crvVault the reported amount of dust will not be correct
medium
Unrestricted proposal cancellation allows governance process manipulation
medium
Failure to Withdraw Liquidity to RToken.sol Before Changing Curve Vault Address
medium
Cordinated group of attacker can artificially lower quorum threshold during active proposals forcing malicious proposals to pass without true majority support.
medium
RAACToken burns less tokens than expected when feeCollector is unset
medium
RAACNFT wrongly suppose crvUSD to be equal to 1 dollar
medium
Inaccurate interest-rate and liquidity calculations due to omitted `updateInterestRatesAndLiquidity()` call in `setProtocolFeeRate()`
low
Canceled vote still get voted on and accumulate voting power in Goverance.sol
low
Deposits/Withdrawals can be DOS'ed if crvVault::withdraw produces any losses
low
`LendingPool` yield generated in curve vault is lost and cannot be withdrawn by users
low
Wrong event emitted in `LendingPool::_repay`
low
Inconsistent time boundary check in `Governance::state` and `Governanane::castVote`
low
Missing whenNotPaused modifier on withdraw function allows token withdrawals during emergency
low
Outdated usage index in view functions leads to incorrect debt calculations
Jan '25
high
high
high
high
medium
high
Auction will never succeed due to wrong check
high
Funds might remain locked in `BalancerRouter` when depositing in Balancer pool
high
The fee is double charged on every `create` or `redeem`
medium
Low TVL and high Leverage Supply will DoS the redeem of Leverage tokens
medium
Balancer LP tokens might be locked inside `BalancerRouter`
medium
Incomplete handling of failed auctions
medium
Redeeming all leverage tokens, will DoS their creation
Dec '24
Nov '24
high
Reputation market will be insolvent, due to incorrect increase of market funds when buying.
high
Incorrect fee calculation will overcharge users buying votes.
medium
Incorrect calculation of fees in `EthosVouch` will cause partial loss of user's principle
medium
Missing slippage protection on `sellVotes()`
94.59 USDC • 1 total finding • Sherlock • dobrevaleri
Oct '24
high
high
medium
medium
Sep '24
Aug '24
Jul '24
high
`mintToken()`, `mintWithBudget()`, and `forge()` in the `TraitForgeNft` Contract Will Fail Due to a Wrong Modifier Used in `EntropyGenerator.initializeAlphaIndices()`
high
The maximum number of generations is infinite
medium
Pause and unpause functions are inaccessible
medium
Discrepancy between nfts minted, price of nft when a generation changes & position of `_incrementGeneration()` inside `_mintInternal()` & `_mintNewEntity()`