Stake and Withdraw Functions Remain Active During Market Pause While Other Critical Functions Are Protected
Summary
The stake() and withdraw() functions in BaseGauge remain callable during market pause, creating an inconsistency with other protected functions and potentially allowing users to manipulate staking positions while reward and voting mechanisms are frozen.
Vulnerability Details
The BaseGauge contract implements pause protection on critical functions like getReward() and voteDirection() but fails to apply the same protection to stake() and withdraw() operations.
Impact
Users can modify staking positions while rewards are frozen
Total supply can be manipulated during pause
Reward calculations affected through updateReward modifier
Position changes possible while voting is disabled
Potential for position manipulation before pause is lifted
Tools Used
Manual Review
Recommendations
Add whenNotPaused modifier to stake() and withdraw() functions
Lead Judging Commences
BaseGauge::withdraw, stake, and checkpoint functions lack whenNotPaused modifier, allowing critical state changes even during emergency pause
BaseGauge::withdraw, stake, and checkpoint functions lack whenNotPaused modifier, allowing critical state changes even during emergency pause
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.