Submission Details
Severity:
DOS of StabilityPool --> NFTLiquidator integration and all other direct Contract -> StabilityPool ETH transfers
Description
First of all there is no payable receive() or fallback() function implemented in StabilityPool or its parent contracts that can help it to receive ETH. That means everytime there is a direct transfer of ETH to StabilityPool , the transfer will always fail
Now, the NFTLiquidator.buyBackNFT() transfers ETH to the stability pool and due to the description bug this function will always revert and their will possibly be no way to buy back NFT
// https://github.com/Cyfrin/2025-02-raac/blob/main/contracts/core/pools/StabilityPool/NFTLiquidator.sol#L177
function buyBackNFT(uint256 tokenId) external payable {
...
payable(stabilityPool).transfer(price);
...
}
Recommendations
contract StabilityPool is IStabilityPool, Initializable, ReentrancyGuard, OwnableUpgradeable, PausableUpgradeable {
...
+ receive() external payable {}
...
}
Updates
Lead Judging Commences
inallhonesty 4 months ago
Submission Judgement Published Assigned finding tags:
StabilityPool misses receive/fallback breaking the integration with NFTLiquidator
inallhonesty 4 months ago
Submission Judgement Published Assigned finding tags:
StabilityPool misses receive/fallback breaking the integration with NFTLiquidator
Prize pool breakdown
Total prize
77,280 USDC
nSLOC
3,86420 USDC / LOC
74,000
3,280
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.