CodeHawks Escrow Contract - Competition Details

Cyfrin

Foundry

40,000 USDC

Submission Details

Severity: high

Potential overflow

There is a potential overflow in resolveDispute function

Though, the potential for overflow was commented (Reverts on overflow), but there isn't protection against overflow in the resolveDisute function.

If "totalFee" wraps to 0, resolveDispute function will revert. Neither the buyer, nor the seller, nor the arbiter will be paid in case of dispute.

Manual review

Use Openzeppelin's SafeMath to handle overflow.

Total prize

40,000 USDC

nSLOC

186

215 USDC / LOC

High Medium

37,000 USDC

Low

3,000 USDC

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.