0xDjango - First depositor can break minting of shares #140

sherlock-admin · 2023-07-03T22:53:24Z

0xDjango

high

First depositor can break minting of shares

Summary

The common "first depositor" vulnerability is found in InsuranceFund.depositFor(). The first account to deposit into the insurance fund can steal value from subsequent depositors by:

Minting 1 wei shares
Directly transferring assets into the contract to inflate the poolValue
Subsequent depositors deposit assets but are minted 0 shares due to precision loss
First depositor steals the assets

Vulnerability Detail

The depositor's shares are calculated via:

        if (_pool == 0) {
            shares = amount;
        } else {
            shares = amount * _totalSupply / _pool;
        }

Upon first deposit, the _pool value will be 0. The attacker will transact with an amount = 1 wei to mint 1 wei of shares. Then the attacker will transfer some value of asset directly to the contract. For this example, the attacker transfers 10,000 USDC.

Next, a subsequent depositor attempts to mint shares with 5,000 VUSD.

shares = 5000 ether * 1 wei / 10,000 ether = 0 due to precision loss.

The attacker can now withdraw the second depositor's assets.

Impact

Theft of deposits

Code Snippet

https://github.com/sherlock-audit/2023-04-hubble-exchange/blob/main/hubble-protocol/contracts/InsuranceFund.sol#L104-L108

Tool used

Manual Review

Recommendation

Mint a certain number of shares and transfer them to address(0) within the initialize() function.

The text was updated successfully, but these errors were encountered:

0xshinobii · 2023-07-18T14:37:24Z

This issue was already mentioned in code arena audit. As done in v1, this will be fixed by adding the initial amount to the insurance fund from Hubble at the time of deployment.

hrishibhat · 2023-07-31T13:33:05Z

@ctf-sec this issue was already reported in the previous contest. Shouldn't this be low?

hrishibhat · 2023-08-04T05:31:13Z

Considering this a low issue since it was already found in the previous audit.
https://github.com/sherlock-audit/2023-04-hubble-exchange#q-please-provide-links-to-previous-audits-if-any
And this is acknowledged to by the protocol.
#140 (comment)

github-actions bot added High A valid High severity issue Has Duplicates A valid issue with 1+ other issues describing the same vulnerability labels Jul 10, 2023

0xshinobii added the Sponsor Confirmed The sponsor acknowledged this issue is valid label Jul 18, 2023

sherlock-admin added the Reward A payout will be made for this issue label Jul 19, 2023

ctf-sec mentioned this issue Jul 20, 2023

Delvir0 - Possible to drain all vusd from InsureanceFund if user is the only staker #172

Closed

hrishibhat closed this as completed Aug 4, 2023

sherlock-admin added Non-Reward This issue will not receive a payout and removed Reward A payout will be made for this issue labels Aug 4, 2023

sherlock-admin2 removed High A valid High severity issue Has Duplicates A valid issue with 1+ other issues describing the same vulnerability labels Aug 6, 2023

sherlock-admin2 added the Low/Info A valid Low/Informational severity issue label Aug 6, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

0xDjango - First depositor can break minting of shares #140

0xDjango - First depositor can break minting of shares #140

sherlock-admin commented Jul 3, 2023

0xshinobii commented Jul 18, 2023

hrishibhat commented Jul 31, 2023

hrishibhat commented Aug 4, 2023 •

edited

Loading

0xDjango - First depositor can break minting of shares #140

0xDjango - First depositor can break minting of shares #140

Comments

sherlock-admin commented Jul 3, 2023

First depositor can break minting of shares

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation

0xshinobii commented Jul 18, 2023

hrishibhat commented Jul 31, 2023

hrishibhat commented Aug 4, 2023 • edited Loading

hrishibhat commented Aug 4, 2023 •

edited

Loading