Platform: Code4rena
Start Date: 23/06/2023
Pot Size: $60,500 USDC
Total HM: 31
Participants: 132
Period: 10 days
Judge: 0xean
Total Solo HM: 10
Id: 254
League: ETH
Rank: 89/132
Findings: 1
Award: $57.90
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: 0xnev
Also found by: 0xRobocop, 0xbrett8571, 0xkazim, 0xnacho, 3agle, 8olidity, ABAIKUNANBAEV, Bauchibred, Co0nan, CrypticShepherd, D_Auditor, DelerRH, HE1M, Iurii3, Kaysoft, MrPotatoMagic, RedOneN, RedTiger, Rolezn, SanketKogekar, Sathish9098, Timenov, Toshii, Vagner, bart1e, bytes032, codetilda, devival, halden, hals, kutugu, m_Rassska, naman1778, nonseodion, seth_lawson, solsaver, squeaky_cactus, totomanov, y51r, yudan, zaevlad
57.9031 USDC - $57.90
Instances: EUSDMiningIncentives, LybraRETHVault
If new duration is eqaul to 0 than will occur zero division error in notifyRewardAmount function stakerewardV2pool
Instance: LybraRETHVault
The return value from function EUSD.transferShares is not handled properly. Instance: 120, 131
If eusdAmount is equal to zero than zero converting to PeUSD is possible in convertToPeUSD function.
Instance: PeUSDMainnetStableVision
Wrong event argument is used in emitting of Flashloaned event. It should be shareAmount instead of eusdAmount
Instance: PeUSDMainnetStableVision
Fee upper limit is missed when new value for fee is setted. Fee for flashloan can be updated to 10_000 and to get all shares of user.
Instance: PeUSDMainnetStableVision
Anothor address is used for WBETH. Instance: LybraWbETHVault
Regarding comment above function burn the given amount from user should be bigger than zero. LybraEUSDVaultBase
It is possible length mismatch in setTokenMiner function for arrays _contracts and _bools. LybraConfigurator
#0 - c4-sponsor
2023-07-27T07:06:21Z
LybraFinance marked the issue as sponsor acknowledged
#1 - c4-judge
2023-07-28T00:05:03Z
0xean marked the issue as grade-a