Flow

Sablier

FoundryDeFi

20,000 USDC

View results

Previous Next

Submission Details

Severity: high

Invalid

Improper debt resets leading to underestimation of ongoing debt in sablierflow contract

davidjohn241018

Summary

The SablierFlow contract uses ongoing debt calculations to manage token streaming payments. The ongoing debt is computed based on the elapsed time from snapshotTime to the current block.timestamp, multiplied by ratePerSecond. If the debt reset logic does not properly update snapshotTime or fails to recalculate debt accurately, it can lead to the underestimation of ongoing debt. This vulnerability can result in financial inconsistencies, negatively impacting both the recipients and the contract’s overall stability.

Vulnerability Details

Description: The vulnerability occurs when the debt reset mechanism fails to update snapshotTime correctly or does not fully recalculate the accrued debt. This can happen in scenarios where the debt is adjusted, but past obligations are not accounted for, or when the timestamp management is flawed. The result is an underestimation of the ongoing debt owed to stream recipients.
Mechanisms:
- Debt Reset Without Timestamp Update: If the snapshotTime is not updated to block.timestamp after resetting or adjusting the debt, the elapsed time used in debt calculations becomes artificially shorter, leading to underestimated debt.
- Improper Debt Recalculation: Failing to incorporate past debt when adjustments are made can cause a discrepancy between the actual and expected debt amounts.
- Pause and Resume Logic: Inaccuracies can also arise if the contract does not properly handle timestamp adjustments when streams are paused and then resumed.

Impact

Financial Loss for Recipients: Underestimation of debt results in recipients receiving fewer tokens than they are entitled to. This could cause trust issues, dissatisfaction, and potential disputes.
Accumulated Contract Liability: The contract may unknowingly accrue hidden liabilities that become problematic if a large payout is suddenly required. This could destabilize the contract's financial health.
Operational and Reputational Risks: Inaccurate debt calculations undermine the reliability of the service. If the vulnerability is publicly exposed, it could damage the project’s reputation and erode user confidence.
Potential Exploitation: Although less direct than other vulnerabilities, the issue could be exploited by savvy users who may try to withdraw funds strategically based on the incorrect debt calculations.

Tools Used

Tests

Recommendations

Always update snapshotTime to block.timestamp when debt is reset or when parameters that affect debt accumulation are modified. This ensures that the elapsed time used in calculations is accurate.

Updates

Lead Judging Commences

inallhonesty Lead Judge 10 months ago

Submission Judgement Published

Invalidated

Reason: Too generic

Prize pool breakdown

Total prize

20,000 USDC

nSLOC

699

29 USDC / LOC

High Medium

19,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.