Core Contracts

Regnum Aurum Acquisition Corp

HardhatReal World AssetsNFT

77,280 USDC

View results

Previous Next

Submission Details

Severity: medium

Invalid

Ensure SafeERC20 Usage for Secure Transfers in `Treasury`

77SecMentees

Summary

The audit identified an issue related to the usage of the transfer and transferFrom functions in ERC20 token transactions. The implementation directly calls these functions, which may cause compatibility issues with tokens that do not adhere strictly to the ERC20 standard.

Vulnerability Details

Description:

The protocol aims to support all ERC20 tokens but directly uses the standard transfer and transferFrom functions. Some tokens, such as USDT, do not fully comply with the ERC20 standard and do not return a boolean success value. As a result, calling these functions expecting a return value can lead to transaction reverts.

Affected Code:

The following functions suffer from this issue:

Treasury in deposit
Treasury in withdraw

function deposit(address token, uint256 amount) external override nonReentrant {

if (token == address(0)) revert InvalidAddress();

if (amount == 0) revert InvalidAmount();

IERC20(token).transferFrom(msg.sender, address(this), amount); // Potential issue

_balances[token] += amount;

_totalValue += amount;

emit Deposited(token, amount);

}

function withdraw(

address token,

uint256 amount,

address recipient

) external override nonReentrant onlyRole(MANAGER_ROLE) {

if (token == address(0)) revert InvalidAddress();

if (recipient == address(0)) revert InvalidRecipient();

if (_balances[token] < amount) revert InsufficientBalance();

_balances[token] -= amount;

_totalValue -= amount;

IERC20(token).transfer(recipient, amount); // Potential issue

emit Withdrawn(token, amount, recipient);

}

Impact

Tokens that do not strictly follow the ERC20 standard, such as USDT, may revert transactions when transfer or transferFrom is called expecting a return value. This could render these tokens unusable within the protocol.

Tools Used

Manual code review

Recommendations

Use OpenZeppelin’s SafeERC20 Library
- Replace direct calls to transfer and transferFrom with safeTransfer and safeTransferFrom from OpenZeppelin’s SafeERC20 library.
using SafeERC20 for IERC20;

IERC20(token).safeTransferFrom(msg.sender, address(this), amount);
IERC20(token).safeTransfer(recipient, amount);
Ensure Compatibility with Non-Standard ERC20 Tokens
- Implement handling for tokens that do not return a success boolean.
- Consider using low-level calls (call) to interact with these tokens safely.

By implementing these mitigations, the protocol can support a wider range of ERC20 tokens, including those with non-standard implementations like USDT, ensuring better usability and security.

Updates

Lead Judging Commences

inallhonesty Lead Judge 7 months ago

Submission Judgement Published

Invalidated

Reason: Known issue

Assigned finding tags:

[INVALID] SafeERC20 not used

LightChaser Low-60

Prize pool breakdown

Total prize

77,280 USDC

nSLOC

3,864

20 USDC / LOC

High Medium

74,000

Low

3,280

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!