there is no check for msg.value in createVault function #12

hats-bug-reporter · 2023-08-21T15:34:50Z

Github username: @0xmahdirostami
Submission hash (on-chain): 0xbb7f1d95289a8649a1365a8429f6a907fed9380decd371b576aae79feeb2c216
Severity: high

Description:
Description
As mentioned in https://docs-v3.stakewise.io/for-developers/create-vault :
The security deposit of 1 gwei must be transferred with the call. This protects the vault stakers from the inflation attack.
BUT there is no check

Attack Scenario
attack Scenario mentioned in OpenZeppelin/openzeppelin-contracts#3706

Attachments

Proof of Concept (PoC) File
Not needed
Revised Code File (Optional)

add check

if(msg.value < 1000000000){revert();}  //  1  gwei

The text was updated successfully, but these errors were encountered:

tsudmi · 2023-08-23T18:18:46Z

The more is deposited, the stronger is protection against inflation attack, so the deployer could do that in purpose.

hats-bug-reporter bot added the bug Something isn't working label Aug 21, 2023

tsudmi added the invalid This doesn't seem right label Aug 23, 2023

tsudmi mentioned this issue Aug 23, 2023

Users will lose funds if they transfer too much ETH when creating vaults #20

Open

JeffCX mentioned this issue Aug 24, 2023

Loss of vault creator msg.value #83

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

there is no check for msg.value in createVault function #12

there is no check for msg.value in createVault function #12

hats-bug-reporter bot commented Aug 21, 2023

tsudmi commented Aug 23, 2023

there is no check for msg.value in createVault function #12

there is no check for msg.value in createVault function #12

Comments

hats-bug-reporter bot commented Aug 21, 2023

tsudmi commented Aug 23, 2023