The contract currently lacks a mechanism to update the pool address, which can become an issue if the original address is compromised or needs to be rotated.
Without the ability to update the pool address, the contract could become permanently affected if the address is compromised or lost. This rigidity poses significant long-term risks.
Severity: High
Losing control over the pool address can render the contract inoperable or expose it to unauthorized actions, causing severe disruptions and potential security breaches.
Manual code review
Introduce a function to securely update the pool address, incorporating proper authorization checks.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.