Unrestricted Boost Modification Vulnerability
Summary
The updateUserBoost function lacks access controls, allowing any address to modify boost values for any user in any pool. This oversight enables unauthorized manipulation of user boost parameters.
Vulnerability Details
The public updateUserBoost(address user, address pool) function has no caller restrictions. Any external entity can modify boost values, compromising the system's integrity by allowing unauthorized boost modifications.
Impact
Potential for malicious boost manipulation affecting reward calculations and distribution fairness.
Tools Used
Manual code review
Recommendations
-
Add Access Control: Implement authorization checks:
modifier onlyAuthorized() {require(msg.sender == owner || isAuthorized[msg.sender], "Not authorized");_;}Apply to
updateUserBoostfor controlled access.
Lead Judging Commences
BoostController::updateUserBoost lacks caller validation, allowing anyone to force delegation of any user's boost to any pool without consent, hijacking voting power
BoostController::updateUserBoost lacks caller validation, allowing anyone to force delegation of any user's boost to any pool without consent, hijacking voting power
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.