New Admin is not set correctly #51
Labels
bug
Something isn't working
disagree with severity
Sponsor confirms validity, but disagrees with warden’s risk assessment (sponsor explain in comments)
duplicate
This issue or pull request already exists
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
sponsor acknowledged
Technically the issue is correct, but we're not going to resolve it for XYZ reasons
Lines of code
https://github.com/code-423n4/2022-05-aura/blob/main/contracts/AuraStakingProxy.sol#L116
https://github.com/code-423n4/2022-05-aura/blob/main/contracts/VoterProxy.sol#L73
https://github.com/code-423n4/2022-05-aura/blob/main/contracts/AuraVestedEscrow.sol#L77
Vulnerability details
We will take applyPendingOwner function from AuraStakingProxy.sol#L116 in this POC
Impact
The require statement condition in applyPendingOwner function is incorrect. msg.sender should be pendingOwner and not owner. Owner might give an incorrect pendingOwner address, but a 2 step process where pendingOwner has to accept the Admin will confirm that address was correct
Proof of Concept
Similar occurrence
Recommended Mitigation Steps
The text was updated successfully, but these errors were encountered: