getBoostMultiplier() from BoostController.sol will always return the max boost
Summary
getting the currect boost multiplier for a user in a pool by getBoostMultiplier() from BoostController.sol will always return the max boost
Vulnerability Details
When calculating the boost multiplier in the getBoostMultiplier() these are the calculations ->
The formula looks like this -> (x * 10 000) / 25 000 = baseAmount
return (x * 10 000) / baseAmount ;
which will always return 25 000, because
(x * 10 000) / (( x * 10 000) / 25 000)) = 25 000
the x * 10 000 will be cancelled out, thus will always return 25 000, regardless of the userBoost.amount
Impact
incorrect calculation, always returning the Max Boost
Tools Used
Recommendations
Use another logic for the calculation
Lead Judging Commences
BoostController::getBoostMultiplier always returns MAX_BOOST for any non-zero boost due to mathematical calculation error, defeating the incentive mechanism
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.