External Call Made Before State Change #23
Labels
1 (Low Risk)
bug
Something isn't working
Resolved
Used when a fix has been implemented.
sponsor confirmed
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Handle
leastwood
Vulnerability details
Impact
There are a number of functions in
RCTreasury.solwhich make external calls to another contract before updating the underlying market balances. More specifically, these affected functions aredeposit(),sponsor(), andtopupMarketBalance(). As a result, these functions would be prone to reentrancy exploits. However, assafeTransferFrom()operates on a trusted ERC20 token (RealityCard's token), this issue is of low severity.Proof of Concept
https://github.com/code-423n4/2021-08-realitycards/blob/main/contracts/RCTreasury.sol#L385-L391
https://github.com/code-423n4/2021-08-realitycards/blob/main/contracts/RCTreasury.sol#L561-L563
https://github.com/code-423n4/2021-08-realitycards/blob/main/contracts/RCTreasury.sol#L459-L461
Tools Used
Manual code review
Recommended Mitigation Steps
Modify the aforementioned functions such that all state changes are made before a call to the ERC20 token using the
safeTransferFrom()function.The text was updated successfully, but these errors were encountered: