Deriving price from balanceOf can be manipulated to liquidate vault see example <https://solodit.xyz/issues/deriving-price-with-balanceof-is-dangerous-spearbit-connext-pdf>
Attacker can provide ERC20 token to the vaultAsset and mint vault shares. The deposited tokens will then be withdrawn with having same shares in the vault.
The shares then will be used to liquidate the vault and causing loss of funds for other depositors.
Manual Review/ previous audit findings.
The method in this regard is based on interlinking the assets provided with vault share with function of burning vault shares when asset provided is withdrawn.
Other
The text was updated successfully, but these errors were encountered:
All reactions