15,000 USDC
View results
Submission Details
Severity: medium
Valid

The stale check time intervals are too long

Summary

The system is set to check the interval of three hours, if the price fluctuates significantly within three hours, this may cause a loss of funds.

Vulnerability Details

Because TIMEOUT = 3 hours.
If the data at the time of the check is two hours old (within three hours), and the data fluctuates a lot during this time, the check may pass, resulting in a loss of money.

Impact

It may cause a loss of funds.

Tools Used

Recommendations

Set TIMEOUT to within 3600 seconds (because Chainlink's Heartbeat is at least 3600 seconds).
Example: uint256 private constant TIMEOUT = 1800 seconds;

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.