Sparkn

CodeFox Inc.

DeFiFoundryProxy

15,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Single Point of Failure: Owner Key Loss Paralyzes Contract and Funds

tsar

Summary

The contract is highly dependent on the owner for various functionalities. If the owner loses access to their private key, the contract and its funds could be stuck indefinitely.

Vulnerability Details

THe owner a central point of failure, many critical functions like setContest, deployProxyAndDistributeByOwner, and distributeByOwner are restricted to the owner.

Impact

1- If the owner loses their private key, no new contests can be set up.
2 - Existing contests cannot be managed or expired by anyone else
3 - Funds could be stuck in the contract forever

Tools Used

Manual

Recommendations

Implement a multi-sig mechanism or a decentralized governance model to manage ownership.

Prize pool breakdown

Total prize

15,000 USDC

nSLOC

194

77 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.