Back to ych18's contests

Nibbl contest - ych18's results

NFT fractionalization protocol with guaranteed liquidity and price based buyout.

General Information

Platform: Code4rena

Start Date: 21/06/2022

Pot Size: $30,000 USDC

Total HM: 12

Participants: 96

Period: 3 days

Judge: HardlyDifficult

Total Solo HM: 5

Id: 140

League: ETH

Nibbl

Findings Distribution

Researcher Performance

Rank: 9/96

Findings: 3

Award: $1,098.21

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryNibbl

Findings Information

🌟 Selected for report: PwnedNoMore

Also found by: ych18

Labels

bug
duplicate
2 (Med Risk)
sponsor acknowledged

Awards

1052.705 USDC - $1,052.70

External Links

Link to GitHub issue

Lines of code

https://github.com/code-423n4/2022-06-nibbl/blob/main/contracts/NibblVault.sol#L183

Vulnerability details

(msg.value * SCALE * 1e18) / (_initialTokenSupply * _initialTokenPrice) is likely to be more than max(uint32), and therefore _secondaryReserveRatio can be overflowed due to the unsafe downcast to uint32. For example, for:

  • _initialTokenSupply = 1e20.
  • _initialTokenPrice = 1e14. The overflow can happen with every msg.value >= 1 ether. Hence, uint32 cannot be sufficient to hold _secondaryReserveRatio

Recommendation: use a uint64 for _secondaryReserveRatio

#0 - HardlyDifficult

2022-07-04T14:26:34Z

Dupe https://github.com/code-423n4/2022-06-nibbl-findings/issues/273

Findings Information

🌟 Selected for report: IllIllI

Also found by: 0x1f8b, 0x29A, 0x52, 0xNazgul, 0xNineDec, 0xc0ffEE, 0xf15ers, 0xkatana, BowTiedWardens, Chom, ElKu, Funen, GalloDaSballo, JC, JMukesh, JohnSmith, Lambda, Limbooo, MadWookie, MiloTruck, Nethermind, Noah3o6, Nyamcil, Picodes, PwnedNoMore, Randyyy, RoiEvenHaim, SmartSek, StErMi, Tadashi, TerrierLover, TomJ, Tomio, Treasure-Seeker, UnusualTurtle, Varun_Verma, Wayne, Waze, _Adam, apostle0x01, asutorufos, berndartmueller, c3phas, catchup, cccz, cloudjunky, codexploder, cryptphi, defsec, delfin454000, dipp, ellahi, exd0tpy, fatherOfBlocks, hansfriese, hyh, joestakey, kebabsec, kenta, masterchief, minhquanym, naps62, oyc_109, pashov, peritoflores, reassor, rfa, robee, sach1r0, saian, sashik_eth, shenwilly, simon135, slywaters, sorrynotsorry, sseefried, unforgiven, xiaoming90, ych18, zuhaibmohd, zzzitron

Awards

28.2781 USDC - $28.28

Labels

bug
QA (Quality Assurance)
sponsor confirmed

External Links

Link to GitHub issue

Basket.sol

  • Wrong comment in line 58, it should be ERC1155 instead of ERC721 #NibblVault.sol
  • Consider adding an event for the initialize(), updateCurator().

MISC

  • Most of the comments in all the contracts assume that the ERC1155 token can be only NFT. This is not true because a tokenID of ERC1155 can be a fungible token.

Findings Information

🌟 Selected for report: IllIllI

Also found by: 0v3rf10w, 0x1f8b, 0x29A, 0xKitsune, 0xNazgul, 0xf15ers, 0xkatana, 8olidity, ACai, BowTiedWardens, Chandr, Chom, ElKu, Fitraldys, Funen, IgnacioB, JC, Lambda, Limbooo, MiloTruck, Noah3o6, Nyamcil, Picodes, Randyyy, SmartSek, StErMi, TerrierLover, TomJ, Tomio, UnusualTurtle, Waze, _Adam, ajtra, c3phas, cRat1st0s, catchup, codexploder, cryptphi, defsec, delfin454000, ellahi, exd0tpy, fatherOfBlocks, hansfriese, joestakey, kebabsec, kenta, m_Rassska, minhquanym, oyc_109, pashov, reassor, rfa, robee, sach1r0, saian, sashik_eth, simon135, slywaters, ych18, ynnad, zuhaibmohd

Awards

17.2254 USDC - $17.23

Labels

bug
G (Gas Optimization)
sponsor acknowledged

External Links

Link to GitHub issue
  • unchecked pattern can be used in L319 and L378 of NibblVault.
  • notBoughtOut modifier is double checked in buy() and sell() function when status == Status.buyout ( one the function and the other one in the function _rejectBuyout()
AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter