Platform: Code4rena
Start Date: 07/07/2023
Pot Size: $121,650 USDC
Total HM: 36
Participants: 111
Period: 7 days
Judge: Picodes
Total Solo HM: 13
Id: 258
League: ETH
Rank: 104/111
Findings: 1
Award: $2.25
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: Udsen
Also found by: 0xMirce, 0xPsuedoPandit, 0xStalin, 0xbepresent, Aymen0909, Bobface, Co0nan, GREY-HAWK-REACH, Jeiwan, John, KupiaSec, LuchoLeonel1, Nyx, Praise, RedTiger, alexweb3, bin2chen, btk, dacian, dirk_y, josephdara, keccak123, ktg, mahdirostami, markus_ether, minhtrng, ni8mare, peanuts, ptsanev, ravikiranweb3, rvierdiiev, seeques, serial-coder, shaka, teawaterwire, wangxx2026, zzzitron
2.2492 USDC - $2.25
Anyone can come and claim the yield fee for themselves.
In testLiquidateAndMintFees in Liquidate.t.sol just change this line:
vault.setYieldFeeRecipient(bob);
to a random address
vault.setYieldFeeRecipient(0xc0ffee);
and keeping that line:
vault.mintYieldFee(_yieldFeeShares, bob);
by running forge test --match-test testLiquidateAndMintFees it returns no errors.
Fee shares are minting to bob even though is not the fee recipient.
foundry
Send fees to the right recipient
Access Control
#0 - c4-judge
2023-07-18T15:32:12Z
Picodes marked the issue as duplicate of #396
#1 - c4-judge
2023-08-05T22:03:51Z
Picodes changed the severity to 3 (High Risk)
#2 - c4-judge
2023-08-05T22:04:35Z
Picodes marked the issue as satisfactory