# 52990 sc low uint8 truncation and missing cap on week index can return wrong zero jackpot amounts low contract fails to deliver promised returns * **Submitted on:** Aug 14th 2025 at 15:18:09 UTC by @daxun for [Attackathon | Plume Network](https://immunefi.com/audit-competition/plume-network-attackathon) * **Report ID:** #52990 * **Report Type:** Smart Contract * **Report severity:** Low * **Target:** ## Description ### Brief / Intro `determineReward()` computes: ```solidity uint8 weekNumber = uint8(getCurrentWeek()); ``` * Past the designed 12-week campaign, `jackpotPrizes[weekNumber]` often defaults to **0** (uninitialized), so winners can receive **0** unexpectedly. * After **256 weeks**, casting to `uint8` **wraps** (mod 256) and can index an unintended bucket, again returning **wrong prizes** (commonly **0**). ### Vulnerability Details * `initialize()` only configures indices `0..11`. No guard exists in `determineReward()` to zero out jackpots post-campaign or cap the index. * `getWeeklyJackpot()` caps the display (`if (weekNumber > 11) return (weekNumber, 0, 0);`), but **this guard is not used** in `determineReward()`. ### Impact Details {% hint style="info" %} * Immunefi Impact: **Low — Contract fails to deliver promised returns, but doesn't lose value** * After week 12 (or any misconfiguration where `campaignStartDate` is old), jackpot payouts can become **0**. After week 256, indexing is effectively **nondeterministic modulo 256**. {% endhint %} ## References * `determineReward()` (`uint8 weekNumber = uint8(getCurrentWeek());`) * `initialize()` (only sets 0..11) * `getWeeklyJackpot()` (has a cap that isn’t applied in `determineReward()`) `determineReward()` () ## Proof of Concept {% stepper %} {% step %} ### Setup: campaign start > 12 weeks ago * Set `campaignStartDate` to be more than 12 weeks in the past. {% endstep %} {% step %} ### Force a jackpot and trigger a spin * Make `jackpotProbabilities[dayOfWeek]` high (or otherwise force a jackpot) and trigger a spin. {% endstep %} {% step %} ### observe jackpot index and payout * `determineReward()` computes `weekNumber` via `uint8(getCurrentWeek())`. * Because `weekNumber > 11`, `jackpotPrizes[weekNumber]` is uninitialized (defaults to `0`). * The user “wins” a **0-amount** jackpot. {% endstep %} {% step %} ### Long-term wraparound (> 256 weeks) * If `campaignStartDate` is more than 256 weeks ago, `uint8(getCurrentWeek())` wraps (mod 256) and indexes an unintended bucket (often unset = 0), producing wrong payouts. {% endstep %} {% endstepper %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://reports.immunefi.com/plume-or-attackathon/52990-sc-low-uint8-truncation-and-missing-cap-on-week-index-can-return-wrong-zero-jackpot-amounts-lo.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.