Platform: Code4rena
Start Date: 29/03/2024
Pot Size: $36,500 USDC
Total HM: 5
Participants: 72
Period: 5 days
Judge: 3docSec
Total Solo HM: 1
Id: 357
League: ETH
Rank: 62/72
Findings: 1
Award: $8.28
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: immeas
Also found by: 0xAkira, 0xCiphky, 0xGreyWolf, 0xJaeger, 0xMosh, 0xabhay, 0xlemon, 0xmystery, 0xweb3boy, Aamir, Abdessamed, Aymen0909, Breeje, DanielArmstrong, DarkTower, Dots, EaglesSecurity, FastChecker, HChang26, Honour, IceBear, JC, K42, Krace, MaslarovK, Omik, OxTenma, SAQ, Shubham, Stormreckson, Tigerfrake, Tychai0s, VAD37, ZanyBonzy, albahaca, arnie, ast3ros, asui, b0g0, bareli, baz1ka, btk, caglankaan, carrotsmuggler, cheatc0d3, dd0x7e8, grearlake, igbinosuneric, jaydhales, kaden, kartik_giri_47538, m4ttm, ni8mare, niser93, nonn_ac, oualidpro, pfapostol, pkqs90, popeye, radev_sw, samuraii77, slvDev, zabihullahazadzoi
8.2807 USDC - $8.28
The absence of a minimum amount parameter for slippage in the ousgInstantManager.sol contract poses a risk of token loss to users in case of price fluctuations prior to transaction execution.
Functions within ousgInstantManager.sol lack a crucial parameter, minAmount, during minting or redemption processes. This parameter is pivotal in mitigating slippage risks caused by adverse price movements. The oversight increases the vulnerability of users to potential token loss.
No minimum amount parameter in the following functions 👇
It is recommended to add minAmount parameter in all of the functions.
Other
#0 - c4-pre-sort
2024-04-04T02:58:54Z
0xRobocop marked the issue as duplicate of #250
#1 - c4-pre-sort
2024-04-04T22:59:52Z
0xRobocop marked the issue as duplicate of #156
#2 - c4-judge
2024-04-09T08:02:06Z
3docSec marked the issue as satisfactory
#3 - c4-judge
2024-04-11T15:13:13Z
3docSec changed the severity to QA (Quality Assurance)
#4 - c4-judge
2024-04-11T15:16:30Z
3docSec marked the issue as grade-b