Beedle - Oracle free perpetual lending

BeedleFi

DeFiFoundry

20,000 USDC

View results

Previous Next

Submission Details

Severity: low

Check-Effect-Interaction is not enforced

namx05

Summary

The claim function of the staking contract is setting the claimable mapping after a token transfer.

Solidity recommends the usage of the Check-Effects-Interaction Pattern to avoid potential security issues, such as reentrancy.

Vulnerability Details

claim function of Staking.sol contract is updating the claimable mapping after the external call which can be used by attacker to control the flow of the contract and further reenter into the function. It is advisable to follow CEI pattern.

Impact

May cause minimal or un-noticeable impact, But this should be remediated as external call may lead of reentrancy to other functions as well.

Tools Used

manual

Recommendations

Although the impact is very limited, it is recommended to implement:

modifier such as nonReentrant
checks-effects-interactions pattern.

Prize pool breakdown

Total prize

20,000 USDC

nSLOC

706

28 USDC / LOC

High Medium

18,000 USDC

Low

2,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.