Submission Details
Severity:
L1BossBridge.sol - L1Vault - DDos Vault
Summary
Sending funds to the vault right away will block the funds as no token will be minted on L2
Vulnerability Details
if (token.balanceOf(address(vault)) + amount > DEPOSIT_LIMIT) {
revert L1BossBridge__DepositLimitReached();
}
Impact
Event won't be emitted and the the vault can potentially reach it's limit ending up in an imbalanced vault
Tools Used
Manual
Recommendations
Adding a emergency withdraw function from the vault to avoid having this kind of imbalance situation and send funds back to the user
Updates
Lead Judging Commences
0xnevi over 1 year ago
Submission Judgement Published Assigned finding tags:
depositTokensToL2(): DoS deposits via DEPOSIT_LIMIT
Rewards breakdown
nSLOC
99This contest has a flat reward structure with the following payouts:
100 EXP
20 EXP
2 EXP
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.