Incorrect Fee Calculation Due to Double Scaling
Summary
The UpliftOnlyExample contract contains a critical calculation error in the fee computation logic where an unnecessary scaling factor of 1e18 is applied, resulting in significantly inflated fees being charged to users.
Vulnerability Details
In the UpliftOnlyExample contract, when calculating fees based on LP token value changes, the code incorrectly applies an additional 1e18 scaling factor:
The lpTokenDepositValueChange should already represent the actual value change in the base units. By multiplying this with both upliftFeeBps and an additional 1e18 scaling factor, the resulting fee calculation becomes inflated by 1e18, leading to users being charged fees that are 1e18 times larger than intended.
Impact
Loss of funds. Users are being charged fees that are 1e18 times larger than intended, resulting in significant overcharging and potential loss of user funds when interacting with the protocol.
Tools Used
Manual Review
Recommendations
Remove the additional 1e18 scaling factor from the fee calculation:
This change ensures that fees are calculated correctly based on the actual value change and the intended fee basis points, without applying an unnecessary scaling factor.
Lead Judging Commences
finding_Uplift_feePerLP_overscale_1e18_when_benefit
Likelihood: High, when benefit. Impact: High, exitFee will be too high, loss of funds or DoS removal.
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.