You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The setWithdrawHandler function of Controller does not check that the provided parameter _emergencyHandler is non-zero. However, a similar parameter _withdrawHandler is checked.
Handle
shw
Vulnerability details
Impact
The
setWithdrawHandler
function ofController
does not check that the provided parameter_emergencyHandler
is non-zero. However, a similar parameter_withdrawHandler
is checked.Proof of Concept
Referenced code:
Controller.sol#L105-L110
Recommended Mitigation Steps
Add
require(_emergencyHandler != address(0), "setWithdrawHandler: 0x");
after line 106.The text was updated successfully, but these errors were encountered: