The Standard
The Standard
DeFiHardhat
20,000 USDC
View results
Previous Next
Submission Details
Severity: medium
Valid

Using block.timestamp for deadline could result in loss of funds for the user

fakemonkgin

Summary

This vulnerability stems from the fact that using block.timestamp for deadline could result in loss of funds for the user

Vulnerability Details

https://github.com/Cyfrin/2023-12-the-standard/blob/91132936cb09ef9bf82f38ab1106346e2ad60f91/contracts/SmartVaultV3.sol#L223

Impact

protocols should let users who interact with Swaps set expiration deadlines. Without this, there's a risk of a serious loss of funds for anyone starting a swap, cause it can be manipulated

Tools Used

Manual Review

Recommendations

Add deadline params for users to decide the expiration deadlines

deadline: deadline
Updates

Lead Judging Commences

hrishibhat Lead Judge over 1 year ago
Submission Judgement Published
Invalidated
Reason: Non-acceptable severity
Assigned finding tags:

deadline-check-low

hrishibhat Lead Judge over 1 year ago
Submission Judgement Published
Validated
Assigned finding tags:

deadline-check

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.