Maia DAO Ecosystem - Kaiziron's results

Efficient liquidity renting and management across chains with Curvenized Uniswap V3.

General Information

Platform: Code4rena

Start Date: 30/05/2023

Pot Size: $300,500 USDC

Total HM: 79

Participants: 101

Period: about 1 month

Judge: Trust

Total Solo HM: 36

Id: 242

League: ETH

Maia DAO Ecosystem

Findings Distribution

Researcher Performance

Rank: 96/101

Findings: 2

Award: $13.99

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest Page Github Contest Repository Github Findings Repository Maia DAO Ecosystem

Findings Information

🌟 Selected for report: Madalad

Also found by: 0xCiphky, 0xSmartContract, 8olidity, BPZ, Breeje, BugBusters, Kaiziron, MohammedRizwan, Oxsadeeq, Qeew, RED-LOTUS-REACH, T1MOH, brgltd, chaduke, giovannidisiena, lsaudit, peanuts, tsvetanovv

Awards

10.4044 USDC - $10.40

Labels

bug

2 (Med Risk)

downgraded by judge

satisfactory

duplicate-577

External Links

Link to GitHub issue

Lines of code

https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L144-L145 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L206-L207 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L267-L268 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L357-L358 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/TalosStrategyVanilla.sol#L146-L147 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/libraries/PoolActions.sol#L82-L83

Vulnerability details

Impact

The slippage parameters are hardcoded to 0, meaning the minimum amount can be 0. The absence of slippage protection causes transactions to be vulnerable to front running. This can result in users potentially losing their funds.

Proof of Concept

Tools Used

Manual review

Recommended Mitigation Steps

Set a reasonable minimum amount

Assessed type

Uniswap

#0 - c4-judge
2023-07-09T17:37:13Z

trust1995 marked the issue as duplicate of #828

#1 - c4-judge
2023-07-09T17:37:17Z

trust1995 marked the issue as satisfactory

#2 - c4-judge
2023-07-11T17:03:31Z

trust1995 marked the issue as duplicate of #177

#3 - c4-judge
2023-07-11T17:04:19Z

trust1995 changed the severity to 3 (High Risk)

#4 - c4-judge
2023-07-25T08:54:03Z

trust1995 changed the severity to 2 (Med Risk)

Findings Information

🌟 Selected for report: 0xnev

Also found by: 0xSmartContract, Breeje, BugBusters, ByteBandits, IllIllI, Kaiziron, Madalad, MohammedRizwan, SpicyMeatball, T1MOH, kutugu, nadin, peanuts, said, shealtielanz, tsvetanovv

Awards

3.589 USDC - $3.59

Labels

bug

2 (Med Risk)

partial-25

edited-by-warden

duplicate-504

External Links

Link to GitHub issue

Lines of code

https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L147 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L208 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L269 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/base/TalosBaseStrategy.sol#L359 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/TalosStrategyVanilla.sol#L148 https://github.com/code-423n4/2023-05-maia/blob/main/src/talos/libraries/PoolActions.sol#L85

Vulnerability details

Impact

block.timestamp should not be used as a deadline. Doing so is essentially the same as not having a deadline at all. Transactions may become stuck in the mempool for an extended period, resulting in trades being executed way later than the user wants at unfavorable prices and potentially resulting in financial losses.

Proof of Concept

Tools Used

Manual review

Recommended Mitigation Steps

Add a valid deadline

Assessed type

Uniswap

#0 - c4-judge
2023-07-09T11:17:17Z

trust1995 marked the issue as duplicate of #171

#1 - c4-judge
2023-07-09T11:17:23Z

trust1995 marked the issue as partial-25

Maia DAO Ecosystem - Kaiziron's results

Efficient liquidity renting and management across chains with Curvenized Uniswap V3.

General Information

Findings Distribution

Researcher Performance

External Links

[M-18] Not using slippage parameter when interacting with AMMs - $10.40

Findings Information

Awards

Labels

External Links

Lines of code

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

Assessed type

#0 - c4-judge2023-07-09T17:37:13Z

#1 - c4-judge2023-07-09T17:37:17Z

#2 - c4-judge2023-07-11T17:03:31Z

#3 - c4-judge2023-07-11T17:04:19Z

#4 - c4-judge2023-07-25T08:54:03Z

[M-20] Interactions with AMMs do not use deadlines for operations - $3.59

Findings Information

Awards

Labels

External Links

Lines of code

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

Assessed type

#0 - c4-judge2023-07-09T11:17:17Z

#1 - c4-judge2023-07-09T11:17:23Z

#0 - c4-judge
2023-07-09T17:37:13Z

#1 - c4-judge
2023-07-09T17:37:17Z

#2 - c4-judge
2023-07-11T17:03:31Z

#3 - c4-judge
2023-07-11T17:04:19Z

#4 - c4-judge
2023-07-25T08:54:03Z

#0 - c4-judge
2023-07-09T11:17:17Z

#1 - c4-judge
2023-07-09T11:17:23Z