Storage Proofs

Curve

DeFiLayer 1Layer 2

14,723 OP

View results

Previous Next

Submission Details

Severity: medium

Invalid

MEV and Arbitrage Risks Due to Unenforced Price Change Limits

princekay

Description

The oracle is designed to limit price changes to 0.5 bps per block to prevent MEV and manipulation. However, this limit is not explicitly enforced in the contract, leaving room for arbitrage opportunities.

Affected Code

https://github.com/CodeHawks-Contests/2025-03-curve/blob/198820f0c30d5080f75073243677ff716429dbfd/contracts/scrvusd/oracles/ScrvusdOracleV2.vy#L158-L168

@view

def _smoothed_price(last_price: uint256, raw_price: uint256) -> uint256:

max_change: uint256 = (

self.max_price_increment * (block.timestamp - self.last_update) * last_price // 10**18

)

if unsafe_sub(raw_price + max_change, last_price) > 2 * max_change:

return last_price + max_change if raw_price > last_price else last_price - max_change

return raw_price

Vulnerability Details

The _smoothed_price function uses a linear approximation to limit price changes, but it does not enforce a hard cap on the maximum allowable price change per block. This could allow the price to change more rapidly than intended, especially during periods of high volatility. Rapid price changes create arbitrage opportunities, where attackers can front-run transactions to profit from discrepancies between the smoothed price and the actual price. This would result in losses for liquidity providers and undermine the stability of the protocol. Additionally, the lack of enforcement of the 0.5 bps per block limit increases the risk of price manipulation, as attackers could exploit the oracle's inability to handle extreme price movements.

Tools Used

Manual Review

Recommended Mitigation Steps

Enforce the 0.5 bps per block limit in the contract by capping the maximum allowable price change per block. Add a mechanism to revert transactions that exceed this limit.

Updates

Lead Judging Commences

0xnevi Lead Judge

3 months ago

0xnevi Lead Judge 3 months ago

Submission Judgement Published

Invalidated

Reason: Non-acceptable severity

Prize pool breakdown

Total prize

14,723 OP

Eagles

1,472 OP

nSLOC

394

37 OP / LOC

High Medium

12,700

Low

551

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.