Anvil
Reports by Severity
Critical
#36554 [SC-Critical] Time Based Collateral Pool Users can release more than their due share of the pool, drawing from the due share of other users
Medium
#36475 [SC-Medium] Token allowance signature can be front-run
#36532 [SC-Medium] Frontrun to invalidate collateralizable approval signature
#36552 [SC-Medium] DoS for the user's calling `stake` and `stakeReleasableTokensFrom` function
#36567 [SC-Medium] Anyone can cancel anyone's LOC
#36268 [SC-Medium] stake with signature can be front-run lead to user's stake failed
#36303 [SC-Medium] Attackers can cause griefing attack to cause stake transactions of TimeBasedCollateralPool of users to always revert by front-running the user transaction to make the provided si...
#36501 [SC-Medium] Signature Front-Running Vulnerability in CollateralVault
Low
#36309 [SC-Low] TimeBasedCollateralPool: After _resetPool gets called (internally) a depositor can break most functionalities of the smart contract
#36450 [SC-Low] Contract TimeBasedCollateralPool will be unable to process new user transactions and user funds are temporary frozen if a user unstake transaction of TimeBasedCollateralPool execute...
Insight
#36340 [SC-Insight] TimeBasedCollateralPool::_resetAccountTokenStateIfApplicable does not adjust tokenEpochExitBalances after redeeming the account's unstake Units
#36346 [SC-Insight] Typehash Discrepancy in CollateralizableTokenAllowanceAdjustment
#36306 [SC-Insight] Incorrect nonce value emitted in `TimeBasedCollateralPool::_resetPool` event
#36540 [SC-Insight] Users Can Withdraw Funds at Incorrect Fee Rate
#36092 [SC-Insight] Collateralizable Contracts May Retain Status Unconditionally
#36136 [SC-Insight] Fee calculation error in withdraw function of collateralVault contract
#36267 [SC-Insight] Tokens can be stuck forever in UniswapLiquidator because function retrieveTokens always reverts for USDT and all tokens that have transfer function that do not return boolean
Reports by Type
Smart Contract
#36309 [SC-Low] TimeBasedCollateralPool: After _resetPool gets called (internally) a depositor can break most functionalities of the smart contract
#36340 [SC-Insight] TimeBasedCollateralPool::_resetAccountTokenStateIfApplicable does not adjust tokenEpochExitBalances after redeeming the account's unstake Units
#36346 [SC-Insight] Typehash Discrepancy in CollateralizableTokenAllowanceAdjustment
#36450 [SC-Low] Contract TimeBasedCollateralPool will be unable to process new user transactions and user funds are temporary frozen if a user unstake transaction of TimeBasedCollateralPool execute...
#36475 [SC-Medium] Token allowance signature can be front-run
#36306 [SC-Insight] Incorrect nonce value emitted in `TimeBasedCollateralPool::_resetPool` event
#36532 [SC-Medium] Frontrun to invalidate collateralizable approval signature
#36552 [SC-Medium] DoS for the user's calling `stake` and `stakeReleasableTokensFrom` function
#36554 [SC-Critical] Time Based Collateral Pool Users can release more than their due share of the pool, drawing from the due share of other users
#36567 [SC-Medium] Anyone can cancel anyone's LOC
#36540 [SC-Insight] Users Can Withdraw Funds at Incorrect Fee Rate
#36092 [SC-Insight] Collateralizable Contracts May Retain Status Unconditionally
#36136 [SC-Insight] Fee calculation error in withdraw function of collateralVault contract
#36267 [SC-Insight] Tokens can be stuck forever in UniswapLiquidator because function retrieveTokens always reverts for USDT and all tokens that have transfer function that do not return boolean
#36268 [SC-Medium] stake with signature can be front-run lead to user's stake failed
#36303 [SC-Medium] Attackers can cause griefing attack to cause stake transactions of TimeBasedCollateralPool of users to always revert by front-running the user transaction to make the provided si...
#36501 [SC-Medium] Signature Front-Running Vulnerability in CollateralVault