Risk of underflow in the `Helpers::scaleAmount` function, leading to theft of funds.
Relevant GitHub Links
Summary
Funds can be stolen using the `Helpers::scaleAmount` function.
Vulnerability Details
When scaling the amount provided with the Helpers::scaleAmount function, the user may receive more funds than they are supposed to. In this line uint256 scaleFactor = 10 ** (18 - decimals), if decimals is greater than 18, the function will not revert because of the unchecked keyword. Instead of reverting, it will return an incorrect uint256 number instead of the negative number and continue execution with this incorrect number:
For example: Suppose we call scaleAmount with:
a
mount = 5decimals = 20
Here’s what happens:
Calculation of Exponent: 1
8 - 20 = -2, soscaleFactor = 10 ** -2.Overflow Occurs: Solidity doesn’t support negative exponents in integer operations, so it interprets
10 ** -2incorrectly, resulting in an extremely large number due to underflow in the exponentiation operation.Incorrect Scale Factor: The overflowed
scaleFactorwill hold a large, incorrect value, potentially leading to further overflow if we calculateamount * scaleFactor. IfscaleFactoroverflows to something like2^256 - 1, multiplying it byamountwill also overflow.
Impact
Loss of funds: Attackers might exploit an underflow if they can influence the input values, leading to unexpected or excessive tokens.
Unexpected Reverts or Errors: If the overflowed
scaleFactoris used in calculations, it may produce nonsensical results or cause reverts in later calculations, especially when multiplied by another large number.Possibly DOS
Tools Used
Manual analysis.
Recommendations
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.