Missing zero address check
The modifier, onlyValidAsset, confirms if the asset's vault is zero. However, it does not validate whether the asset address is a zero address.
Manual view
To resolve this issue, you should add an additional check in the onlyValidAsset
modifiers to ensure that the asset and bridge addresses are not zero addresses. Here is how you can modify the code:
The require
statement will ensure that the provided address is not a zero address. If it is, it will revert the transaction and provide a descriptive error message. This will prevent any potential issues or vulnerabilities related to zero addresses.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.