search
Active Boosts

#46949 [SC-High] Top-up discount miscalculation allows minting excess pool tokens via repeated small deposits in `CollateralPool::enter`

Submitted on Jun 6th 2025 at 15:50:32 UTC by @NHristov for Audit Comp | Flare | FAssetsarrow-up-right

  • Report ID: #46949

  • Report Type: Smart Contract

  • Report severity: High

  • Target: https://github.com/flare-foundation/fassets/blob/main/contracts/assetManager/implementation/CollateralPool.sol

  • Impacts:

    • Theft of unclaimed yield

hashtag
Description

hashtag
Brief/Intro

The _collateralToTokenShare function in CollateralPool.sol applies a top-up bonus on the first chunk of collateral needed to reach the target pool-collateral ratio. However, because it recalculates that bonus slice against the current pool state on each call, an attacker can split a single top-up deposit into multiple smaller deposits and repeatedly capture the full bonus. This lets them mint more pool tokens than a single lump-sum deposit of the same total amount would allow.

hashtag
Vulnerability Details

In CollateralPool the function

function _collateralToTokenShare(AssetData memory _assetData, uint256 _collateral)
    internal view returns (uint256)
{
    uint256 natRequiredToTopup =
    uint256 collateralForTopupPricing = Math.min(_collateral, natRequiredToTopup);
    uint256 collateralAtTopupPrice = collateralForTopupPricing.mulDiv(
        SafePct.MAX_BIPS, topupTokenPriceFactorBIPS);
    uint256 tokenShareAtTopupPrice = poolConsideredEmpty
        ? collateralAtTopupPrice
        : _assetData.poolTokenSupply.mulDiv(collateralAtTopupPrice, _assetData.poolNatBalance);
    uint256 tokenShareAtStandardPrice =
    return tokenShareAtTopupPrice + tokenShareAtStandardPrice;
}

Each call updates CollateralPool::poolTokenSupply and CollateralPool::poolNatBalance after minting, splitting a large deposit N into k equal chunks allows each chunk to benefit from bigger ratio between CollateralPool::poolTokenSupply and CollateralPool::poolNatBalance because the applied topup bonus will mint more pool tokens than the provided collateral.

  1. Compute the full natRequiredToTopup for a large deposit C.

  2. Split C into k equal chunks.

  3. Call enter(..., { value: C/k }) k times.

hashtag
Impact Details

  • An attacker can inflate their pool token balance without providing additional collateral, diluting all existing holders and siphoning future fee revenue. Depending on pool size and discount parameters, this can lead to severe economic loss and destabilize the pool.

hashtag
References

https://github.com/flare-foundation/fassets/blob/fc727ee70a6d36a3d8dec81892d76d01bb22e7f1/contracts/assetManager/implementation/CollateralPool.sol#L485C1-L508C6

hashtag
Proof of Concept

The following unit test demonstrates the exploit:

  • To run the test paste the code in the CollateralPool.ts unit test file and execute it

Previous#46943 [SC-Medium] Agents can prevent user CoreVault redemptions by sandwiching them with a requestReturnFromCoreVault and a cancelReturnFromCoreVaultNext#46953 [SC-High] agents who create agents with prior transactions can be instantly unfairly liquidated

Was this helpful?