CodeHawks
Competitive Audits
First Flights
Judging
Leaderboard
Docs
Toggle theme
Connect Wallet
All Contests
Foundry DeFi Stablecoin CodeHawks Audit Contest
Submissions
Foundry DeFi Stablecoin CodeHawks Audit Contest
Cyfrin
Foundry DeFi Stablecoin CodeHawks Audit Contest
Cyfrin
DeFi
Foundry
15,000
USDC
Public
15,000
USDC
Jul 24th, 2023 → Aug 5th, 2023
View repo
View results
1132 / 1132
Submissions
Severity
Validity
Tags
Author
#1
Incompatible with ERC20 tokens with no return value
Medium
-
GoSoul22
#2
Arithmetic underflow error
Low
-
0xAadhi
#3
Incompatible with ERC20 tokens with fee on transfer
Medium
-
GoSoul22
#4
The amount calculation error does not take into account the collateral decimal
High
-
kutu
#5
The expiration time of oracle prices for different collateral should not be consistent
Medium
-
kutu
#6
The presence of a circuit breaker in the oracle aggregator may result in protocol losses
Medium
-
kutu
#7
OracleLib.staleCheckLatestRoundData() will fail to revert upon stale price as TIMEOUT greater than btc/usd & eth/usd heartbeats
Medium
-
dacian
#8
No input validation for "collateral" address
Low
-
0xAadhi
#9
Same Hard-coded timeout used for multiple price feeds can result in stale prices treated as fresh when price feeds have different heartbeats
Medium
-
dacian
#10
Balance Values Issues After liquidated
Medium
-
touqeershah32
#11
Anyone can burn their tokens, locking collateral in contract
Medium
-
BAHOZ
#12
G-1
Gas
-
BAHOZ
#13
G-2
Gas
-
BAHOZ
#14
G-3
Gas
-
BAHOZ
#15
G-4
Gas
-
BAHOZ
#16
Missing Licence
Gas
-
BAHOZ
#17
User collateral will be permanently lost if Oracle price feeds stop working
Medium
-
dacian
#18
Attacker can extract value from protocol if WBTC depegs from BTC as Oracle prices WBTC using BTC/USD
Medium
-
dacian
#19
Improved Function Visibility in DecentralizedStableCoin.sol (burn())
Gas
-
RoboCrypter
#20
Attacker can extract value from protocol during extreme price crash as OracleLib doesn't check answer > minAnswer
Medium
-
dacian
#21
The protocol may have a lot of dust bad debts
High
-
kutu
#22
Wrong value calculation will cause unfair liquidation calculation
Medium
-
BAHOZ
#23
Assuming Oracle price feed precision can lead to incorrect value calculation
Medium
-
dacian
#24
Using `SafeTransfer` and `SafeTransferFrom`
Medium
-
Bughunter101
#25
`latestRoundData()` problem
Medium
-
Bughunter101
#26
uint256 checked for negative values.
Gas
-
ebok21
#27
The oracle price reading of different collateral should be compatible with revert
Medium
-
kutu
#28
User health rate is underestimated to be liquidated
Low
-
kutu
#29
Transfer functions
Medium
-
veridelisi
#30
Underflow/overflow
Medium
-
mahivasisth
Previous
1
2
3
...
More pages
38
Next
Support
FAQs
Can’t find an answer? Join our Discord or follow us on Twitter.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
What is community judging?
How do I get rewarded?
What is a First Flight?
Give us feedback!