Inheritable Smart Contract Wallet

First Flight #35

Beginner FriendlySolidity

100 EXP

View results

Previous Next

Submission Details

Severity: medium

Invalid

Lack of Input Validation on Trustee-Appointed NFT Valuations

kweks

Description:

The setNftValue function lacks input validation mechanisms despite the trustee being appointed by the beneficiaries. Even with a legitimate appointment, the function allows setting arbitrary values for NFTs without technical safeguards or boundaries. The absence of validation creates a system that relies entirely on trust rather than code-enforced constraints.

Impact:

While the risk is somewhat mitigated by the fact that beneficiaries appoint the trustee, vulnerabilities remain:

No Technical Guard Rails: Even a well-intentioned trustee could make significant errors when setting values without system-enforced boundaries.
Limited Oversight: Once appointed, the trustee appears to have unilateral control over valuations with no additional approval requirements.
Potential for Disputes: Without clear validation rules, beneficiaries might dispute the trustee's valuations, creating governance conflicts.
Economic Consequences: Downstream contracts or calculations that depend on these values remain vulnerable to extreme inputs.

Proof of Concept:

Even with a legitimate appointment, problematic scenarios could arise:

A trustee could accidentally input an incorrect value (e.g., missing or adding a zero), causing significant economic impact.
Disagreements among beneficiaries about appropriate valuations could lead to a trustee setting controversial values.
The trustee might fail to update values consistently across related NFTs, creating imbalances in the system.
If the trustee's credentials are compromised, an attacker could exploit unlimited value setting.

Recommended Mitigation:

Given the defined role, the mitigations should balance flexibility with safety:

Implement reasonable bounds or percentage-based change limits to prevent extreme value shifts.
Add a time-delay mechanism for significant valuation changes, allowing beneficiaries time to review and potentially object.
Require additional confirmation for substantial changes to value (e.g., greater than 50% change).
Create an event system to notify beneficiaries of all valuation changes.
Consider adding a dispute resolution mechanism within the contract for beneficiaries to challenge valuations.
Implement a governance voting system for beneficiaries to approve/reject valuation changes beyond certain thresholds.

These measures would preserve the trustee's ability to fulfill their role while adding appropriate safeguards against mistakes or misuse.

Updates

Lead Judging Commences

0xtimefliez Lead Judge 10 months ago

Submission Judgement Published

Invalidated

Reason: Non-acceptable severity

Rewards breakdown

nSLOC

211

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!