Lucene search

K
code423n4Code4renaCODE423N4:2022-04-DUALITYFOCUS-FINDINGS-ISSUES-13
HistoryApr 08, 2022 - 12:00 a.m.

Transferring admins does not work for CToken

2022-04-0800:00:00
Code4rena
github.com
2

Lines of code

Vulnerability details

Impact

The CToken implements an _acceptAdmin function that sets the new admin to the pendingAdmin.
But CToken does not implement a _setPendingAdmin function to set the pendingAdmin in the first place.
Therefore, the _acceptAdmin function is useless and CTokens can never change their admin, breaking the desired functionality.

Recommended Mitigation Steps

Add a _setPendingAdmin function to CToken as in UniTroller or remove the _acceptAdmin function if the admin should never be changed.


The text was updated successfully, but these errors were encountered:

All reactions