Aave DIVA Wrapper
DIVA
HardhatDeFi
15,000 USDC
View results
Previous Next
Submission Details
Severity: medium
Invalid

Unbounded Loops in Batch Functions

0xdaxun

Summary

Batch functions in AaveDIVAWrapper.sol lack array length limits, risking gas limit reverts.

Vulnerability Details

  • Location: AaveDIVAWrapper.sol

  • Code:

    function batchRegisterCollateralToken(address[] calldata _collateralTokens) external ... {
    for (uint256 i = 0; i < _collateralTokens.length; i++) { ... }
    }

Impact

  • Medium: Large arrays may cause transactions to revert, leading to denial-of-service

Tools Used

  • Manual code review.

Recommendations

Add array length limits:

require(_collateralTokens.length <= 50, "Max array length exceeded");
Updates

Lead Judging Commences

bube Lead Judge 10 months ago
Submission Judgement Published
Invalidated
Reason: Known issue

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!