The updateFeePerSecond function does not set an upper limit.
Summary
The updateFeePerSecond function does not set an upper limit; any extremely large number can be set successfully.
Vulnerability Details
The updateFeePerSecond function does not set an upper limit; any extremely large number can be set successfully. This leads to abnormally high charges, which may cause the vault to not function properly. Although only administrators have setting privileges, eliminating this possibility increases the level of trust users have in the program.
Impact
May affect the normal operation of the vault.
Tools Used
manual
Recommendations
It is recommended that the upper limit of feePerSecond be set within a reasonable range.
Lead Judging Commences
Centralization Risk
Impact: High Likelihood: Low Centralization risk is regarded a known issue. This tag will include all submissions : - Admin setter functions without validations
Centralization Risk
Impact: High Likelihood: Low Centralization risk is regarded a known issue. This tag will include all submissions : - Admin setter functions without validations
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.