Skip to content
This repository has been archived by the owner on Jan 7, 2024. It is now read-only.

Issues: sherlock-audit/2023-06-symmetrical-judging

32 Open 320 Closed
32 Open 320 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

AkshaySrivastav - Liquidators can prevent users from making their positions healthy during an unpause Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Disputed The sponsor disputed this issue's validity Won't Fix The sponsor confirmed this issue will not be fixed
#336 opened Jul 3, 2023 by sherlock-admin
9
berndartmueller - Fee collector can grief the protocol by withdrawing trading fees that could still need to be returned to Party A Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#299 opened Jul 3, 2023 by sherlock-admin
10
berndartmueller - Party B liquidation can expire, causing the liquidation to be stuck Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#293 opened Jul 3, 2023 by sherlock-admin
1
berndartmueller - Consecutive symbol price updates can be exploited to drain protocol funds Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#291 opened Jul 3, 2023 by sherlock-admin
4
berndartmueller - Liquidating a turned solvent Party A does not credit the profits to Party A Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#290 opened Jul 3, 2023 by sherlock-admin
14
xiaoming90 - Rounding error when closing quote Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#251 opened Jul 3, 2023 by sherlock-admin
10
xiaoming90 - Position value can fall below the minimum acceptable quote value Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#248 opened Jul 3, 2023 by sherlock-admin
8
xiaoming90 - Liquidation of PartyA will fail due to underflow errors Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#241 opened Jul 3, 2023 by sherlock-admin
1
xiaoming90 - Hedgers are not incentivized to respond to user's closing requests Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#239 opened Jul 3, 2023 by sherlock-admin
10
xiaoming90 - emergencyClosePosition can be blocked Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#236 opened Jul 3, 2023 by sherlock-admin
2
xiaoming90 - Liquidators will not be incentivized to liquidate certain PartyB accounts due to the lack of incentives Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#234 opened Jul 3, 2023 by sherlock-admin
12
xiaoming90 - Liquidation can be blocked by incrementing the nonce Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#233 opened Jul 3, 2023 by sherlock-admin
11
xiaoming90 - Imbalanced approach of distributing the liquidation fee within setSymbolsPrice function Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Disputed The sponsor disputed this issue's validity Won't Fix The sponsor confirmed this issue will not be fixed
#231 opened Jul 3, 2023 by sherlock-admin
4
xiaoming90 - Suspended PartyBs can bypass the withdrawal restriction by exploiting fillCloseRequest Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Won't Fix The sponsor confirmed this issue will not be fixed
#229 opened Jul 3, 2023 by sherlock-admin
2
xiaoming90 - Accounting error in PartyB's pending locked balance led to loss of funds Disagree With Severity The sponsor disputed the severity of this issue Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#226 opened Jul 3, 2023 by sherlock-admin
3
xiaoming90 - Users might immediately be liquidated after position opening leading to a loss of CVA and Liquidation fee Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#225 opened Jul 3, 2023 by sherlock-admin
7
xiaoming90 - Malicious PartyB can block unfavorable close position requests causing a loss of profits for PartyB Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#224 opened Jul 3, 2023 by sherlock-admin
8
xiaoming90 - depositAndAllocateForPartyB is broken due to incorrect precision Escalation Resolved This issue's escalations have been approved/rejected Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#222 opened Jul 3, 2023 by sherlock-admin
12
bin2chen - LibMuon Signature hash collision Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#214 opened Jul 3, 2023 by sherlock-admin
2
nobody2018 - Quote that have already been liquidated can be liquidated again in some cases Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#206 opened Jul 3, 2023 by sherlock-admin
16
mstpr-brainbot - partyB can leverage emergency mode for quick profits Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Will Fix The sponsor confirmed this issue will be fixed
#192 opened Jul 3, 2023 by sherlock-admin
8
panprog - PartyA and PartyB nonce is not incremented in any of the liquidation functions which can lead to all protocol funds being stolen in some cases Has Duplicates A valid issue with 1+ other issues describing the same vulnerability High A valid High severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#190 opened Jul 3, 2023 by sherlock-admin
1
panprog - Some actions are allowed on partyB when corresponding partyA is liquidated allowing to steal all protocol funds Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Will Fix The sponsor confirmed this issue will be fixed
#189 opened Jul 3, 2023 by sherlock-admin
10
shaka - Wrong calculation of solvency after request to close and after close position Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Will Fix The sponsor confirmed this issue will be fixed
#184 opened Jul 3, 2023 by sherlock-admin
9
shaka - partyA can inflate the uPnL with no cost Escalation Resolved This issue's escalations have been approved/rejected Medium A valid Medium severity issue Reward A payout will be made for this issue Sponsor Confirmed The sponsor acknowledged this issue is valid Will Fix The sponsor confirmed this issue will be fixed
#181 opened Jul 3, 2023 by sherlock-admin
16
ProTip! Updated in the last three days: updated:>2025-01-14.