Entire reward system in BaseGuage is flawed
Summary
The entire reward system in the BaseGuage is flawed.
Vulnerability Details
It is possible for the rewards > totalRewards available. This itself shows that the reward system is flawed.
Note that this is possible because when calculating the rewards of a user, the boost value is also taken into account, which means that the rewards the user can calim can be greater than the totalRewards.
The underlying cause is that the totalSupplyused in the rewardPerTokenStored calculation doesnt take the boost into account.
Impact
Flawed reward system
Tools Used
manual review
Recommendations
consider using the boost in the rewardPerTokenStored in someway and limiting the values such that the rewards are distributed fairly.
Lead Judging Commences
BaseGauge::earned calculates rewards using getUserWeight instead of staked balances, potentially allowing users to claim rewards by gaining weight without proper reward checkpoint updates
BaseGauge::earned calculates rewards using getUserWeight instead of staked balances, potentially allowing users to claim rewards by gaining weight without proper reward checkpoint updates
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.